ID

VAR-200603-0512


CVE

CVE-2006-0982


TITLE

McAfee Virex Online Scanner Remote Attack Vulnerability

Trust: 1.2

sources: CNVD: CNVD-2006-1240 // CNNVD: CNNVD-200603-020

DESCRIPTION

The on-access scanner for McAfee Virex 7.7 for Macintosh, in some circumstances, might not activate when malicious content is accessed from the web browser, and might not prevent the content from being saved, which allows remote attackers to bypass virus protection, as demonstrated using the EICAR test file. The McAfee Virex 7.7 Mac uses an online scanner. As shown in the EICAR test file. Virex is prone to a security bypass vulnerability

Trust: 1.71

sources: NVD: CVE-2006-0982 // CNVD: CNVD-2006-1240 // BID: 88080

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2006-1240

AFFECTED PRODUCTS

vendor:mcafeemodel:virexscope:eqversion:7.7

Trust: 1.6

vendor:virexmodel:mcafee 7.7::macintoshscope: - version: -

Trust: 0.6

vendor:mcafeemodel:virex macintoshscope:eqversion:7.7

Trust: 0.3

sources: CNVD: CNVD-2006-1240 // BID: 88080 // CNNVD: CNNVD-200603-020 // NVD: CVE-2006-0982

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2006-0982
value: MEDIUM

Trust: 1.0

CNVD: CNVD-2006-1240
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-200603-020
value: MEDIUM

Trust: 0.6

nvd@nist.gov: CVE-2006-0982
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

CNVD: CNVD-2006-1240
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2006-1240 // CNNVD: CNNVD-200603-020 // NVD: CVE-2006-0982

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2006-0982

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200603-020

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200603-020

EXTERNAL IDS

db:NVDid:CVE-2006-0982

Trust: 2.5

db:CNVDid:CNVD-2006-1240

Trust: 0.6

db:BUGTRAQid:20060228 VIREX ON-ACCESS SCANNING UNRELIABLE

Trust: 0.6

db:CNNVDid:CNNVD-200603-020

Trust: 0.6

db:BIDid:88080

Trust: 0.3

sources: CNVD: CNVD-2006-1240 // BID: 88080 // CNNVD: CNNVD-200603-020 // NVD: CVE-2006-0982

REFERENCES

url:http://www.securityfocus.com/archive/1/archive/1/426348/100/0/threaded

Trust: 1.5

url:http://www.securityfocus.com/archive/1/426348/100/0/threaded

Trust: 1.0

sources: CNVD: CNVD-2006-1240 // BID: 88080 // CNNVD: CNNVD-200603-020 // NVD: CVE-2006-0982

CREDITS

Unknown

Trust: 0.3

sources: BID: 88080

SOURCES

db:CNVDid:CNVD-2006-1240
db:BIDid:88080
db:CNNVDid:CNNVD-200603-020
db:NVDid:CVE-2006-0982

LAST UPDATE DATE

2024-11-23T22:54:15.639000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2006-1240date:2006-03-03T00:00:00
db:BIDid:88080date:2006-03-03T00:00:00
db:CNNVDid:CNNVD-200603-020date:2006-03-03T00:00:00
db:NVDid:CVE-2006-0982date:2024-11-21T00:07:46.840

SOURCES RELEASE DATE

db:CNVDid:CNVD-2006-1240date:2006-03-03T00:00:00
db:BIDid:88080date:2006-03-03T00:00:00
db:CNNVDid:CNNVD-200603-020date:2006-03-03T00:00:00
db:NVDid:CVE-2006-0982date:2006-03-03T11:02:00