Vulnerability Description
Mcafee VirusScan 4.03 does not properly restrict access to the alert text file before it is sent to the Central Alert Server, which allows local users to modify alerts in an arbitrary fashion.
CVSS Score
2.1
LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mcafee | Virusscan | 4.0.3 |
References
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0038.htmlVendor Advisory
- http://www.osvdb.org/6287
- http://www.securityfocus.com/bid/1326Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4641
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0038.htmlVendor Advisory
- http://www.osvdb.org/6287
- http://www.securityfocus.com/bid/1326Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4641
FAQ
What is CVE-2000-0502?
CVE-2000-0502 is a vulnerability with a CVSS score of 2.1 (LOW). Mcafee VirusScan 4.03 does not properly restrict access to the alert text file before it is sent to the Central Alert Server, which allows local users to modify alerts in an arbitrary fashion.
How severe is CVE-2000-0502?
CVE-2000-0502 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-0502?
Check the references section above for vendor advisories and patch information. Affected products include: Mcafee Virusscan.