Details of VAR-200603-0512

ID

VAR-200603-0512

CVE

CVE-2006-0982

TITLE

McAfee Virex Online Scanner Remote Attack Vulnerability

Trust: 1.2

sources: CNVD: CNVD-2006-1240 // CNNVD: CNNVD-200603-020

DESCRIPTION

The on-access scanner for McAfee Virex 7.7 for Macintosh, in some circumstances, might not activate when malicious content is accessed from the web browser, and might not prevent the content from being saved, which allows remote attackers to bypass virus protection, as demonstrated using the EICAR test file. The McAfee Virex 7.7 Mac uses an online scanner. As shown in the EICAR test file. Virex is prone to a security bypass vulnerability

Trust: 1.71

sources: NVD: CVE-2006-0982 // CNVD: CNVD-2006-1240 // BID: 88080

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2006-1240

AFFECTED PRODUCTS

vendor:	mcafee	model:	virex	scope:	eq	version:	7.7	Trust: 1.6
vendor:	virex	model:	mcafee 7.7::macintosh	scope:	-	version:	-	Trust: 0.6
vendor:	mcafee	model:	virex macintosh	scope:	eq	version:	7.7	Trust: 0.3

sources: CNVD: CNVD-2006-1240 // BID: 88080 // CNNVD: CNNVD-200603-020 // NVD: CVE-2006-0982

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2006-0982
value:	MEDIUM
Trust: 1.0
CNVD:	CNVD-2006-1240
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-200603-020
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2006-0982
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
CNVD:	CNVD-2006-1240
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2006-1240 // CNNVD: CNNVD-200603-020 // NVD: CVE-2006-0982

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2006-0982

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200603-020

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200603-020

EXTERNAL IDS

db:	NVD	id:	CVE-2006-0982	Trust: 2.5
db:	CNVD	id:	CNVD-2006-1240	Trust: 0.6
db:	BUGTRAQ	id:	20060228 VIREX ON-ACCESS SCANNING UNRELIABLE	Trust: 0.6
db:	CNNVD	id:	CNNVD-200603-020	Trust: 0.6
db:	BID	id:	88080	Trust: 0.3

sources: CNVD: CNVD-2006-1240 // BID: 88080 // CNNVD: CNNVD-200603-020 // NVD: CVE-2006-0982

REFERENCES

url:	http://www.securityfocus.com/archive/1/archive/1/426348/100/0/threaded	Trust: 1.5
url:	http://www.securityfocus.com/archive/1/426348/100/0/threaded	Trust: 1.0

sources: CNVD: CNVD-2006-1240 // BID: 88080 // CNNVD: CNNVD-200603-020 // NVD: CVE-2006-0982

CREDITS

Unknown

Trust: 0.3

sources: BID: 88080

SOURCES

db:	CNVD	id:	CNVD-2006-1240
db:	BID	id:	88080
db:	CNNVD	id:	CNNVD-200603-020
db:	NVD	id:	CVE-2006-0982

LAST UPDATE DATE

2024-08-14T14:00:22.558000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2006-1240	date:	2006-03-03T00:00:00
db:	BID	id:	88080	date:	2006-03-03T00:00:00
db:	CNNVD	id:	CNNVD-200603-020	date:	2006-03-03T00:00:00
db:	NVD	id:	CVE-2006-0982	date:	2018-10-18T16:30:02.150

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2006-1240	date:	2006-03-03T00:00:00
db:	BID	id:	88080	date:	2006-03-03T00:00:00
db:	CNNVD	id:	CNNVD-200603-020	date:	2006-03-03T00:00:00
db:	NVD	id:	CVE-2006-0982	date:	2006-03-03T11:02:00