CVE Daily

CVE-2006-6474

Untrusted search path vulnerability in McAfee VirusScan for Linux 4510e and earl...

Medium CVSS 4.6

Overview

Untrusted search path vulnerability in McAfee VirusScan for Linux 4510e and earlier includes the current working directory in the DT_RPATH environment variable, which allows local users to load arbitrary ELF DSO libraries and execute arbitrary code by installing malicious libraries in that directory.

CWE: N/A Published: 2006-12-14T20:28:00.000
Risk analysis

This vulnerability is rated 🟡 MEDIUM.

  • CVSS: 4.6 (MEDIUM)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags