Vulnerability Description
The VirusScan On-Access Scan component in McAfee VirusScan Enterprise 7.1.0 and Scan Engine 4.4.00 allows local privileged users to bypass security restrictions and disable the On-Access Scan option by opening the program via the task bar and quickly clicking the Disable button, possibly due to an interface-related race condition.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mcafee | Scan Engine | 4.4.00 |
| Mcafee | Virusscan Enterprise | 7.1.0 |
References
- http://securityreason.com/securityalert/1605
- http://www.securityfocus.com/archive/1/446220/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28971
- http://securityreason.com/securityalert/1605
- http://www.securityfocus.com/archive/1/446220/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28971
FAQ
What is CVE-2006-4886?
CVE-2006-4886 is a vulnerability with a CVSS score of 3.7 (LOW). The VirusScan On-Access Scan component in McAfee VirusScan Enterprise 7.1.0 and Scan Engine 4.4.00 allows local privileged users to bypass security restrictions and disable the On-Access Scan option b...
How severe is CVE-2006-4886?
CVE-2006-4886 has been rated LOW with a CVSS base score of 3.7/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-4886?
Check the references section above for vendor advisories and patch information. Affected products include: Mcafee Scan Engine, Mcafee Virusscan Enterprise.