Potential product security bypass vulnerability in McAfee Application and Change Control (MACC) prior to version 8.3.4 allows a locally logged in malicious user to circumvent the application solidification protection provided by MACC, permitting them to run applications that would usually be prevented by MACC. This would require the malicious user to rename the specified binary to match name of any configured updater and perform a specific set of steps, resulting in the renamed binary to be to run.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mcafee application and change control |