Privilege Escalation Vulnerability in McAfee VirusScan Enterprise and CMA
CVE-2005-4505

Currently unrated

Key Information:

Vendor

Mcafee

Vendor
CVE Published:
23 December 2005

What is CVE-2005-4505?

An unquoted Windows search path vulnerability in McAfee VirusScan Enterprise and CMA can be exploited by local users to gain elevated privileges. This occurs when 'naPrdMgr.exe' tries to execute 'EntVUtil.EXE' under a path that lacks proper quoting. If a malicious 'program.exe' file is placed in the C: folder, the execution context becomes compromised, enabling unauthorized actions and potential system breaches.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.