McAfee Virus Scan Enterprise - Insecure Library Loading Vulnerability - Security Protection

Common Tasks

Community

Email Notifications

Personal Links

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

McAfee Virus Scan Enterprise - Insecure Library Loading Vulnerability

Secunia has rated this newly discovered risk as Highly Critical. McAfee will most likely address this concern quickly for the Enterprise version 8 family of products.

McAfee Virus Scan Enterprise - Insecure Library Loading Vulnerability
http://secunia.com/advisories/41482

QUOTE: The vulnerability is caused due to the application loading libraries (e.g. traceapp.dll) in an insecure manner. This can be exploited to load arbitrary libraries by tricking a user into opening a Word Document with an embedded ActiveX control located on a remote WebDAV or SMB share in Microsoft Office 2003.

Posted: Nov 30 2010, 10:26 AM by Harry Waldron | with no comments

Questions? Contact Susan at Susan-at-msmvps.com. Each post's copyright held by the original author. All rights reserved. Blog site is an independent site not sponsored by Microsoft.
Our servers would like to thank www.ownwebnow.com and www.exchangedefender.com. We wouldn't be here without the generosity of Vlad Mazek and his companies.

Powered by Community Server (Commercial Edition), by Telligent Systems

Theme based on the Paperclip Blog Theme included in Community Server.
Enhanced to a Site-Wide Theme by Interscape Technologies.