CVE-2007-1227

McAfee VirusScan for Mac <7.7 - Privilege Escalation

Title source: llm

Description

VShieldCheck in McAfee VirusScan for Mac (Virex) before 7.7 patch 1 allow local users to change permissions of arbitrary files via a symlink attack on /Library/Application Support/Virex/VShieldExclude.txt, as demonstrated by symlinking to the root crontab file to execute arbitrary commands.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Kevin Finisterre · perllocalosx

https://www.exploit-db.com/exploits/3386

View Code ZIP pw:eip

References (9)

[Exploit] http://www.securityfocus.com/bid/22744

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/461485/100/0/threaded

[Third Party Advisory, VDB Entry] http://osvdb.org/33797

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1017707

[Various Sources] https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=518722&sliceId=SAL_Public&command=show&forward=nonthreadedKC&kcId=518722

[Third Party Advisory] http://www.vupen.com/english/advisories/2007/0777

[Vendor Advisory] http://secunia.com/advisories/24337

[Exploit] http://securityreason.com/securityalert/2342

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/32729

Scores

EPSS 0.0012

EPSS Percentile 31.0%

Details

CWE

CWE-264

Status published

Products (2)

mcafee/virex 6.2

mcafee/virex < 7.7

Published Mar 02, 2007

Tracked Since Feb 18, 2026