CVE-2000-0650

Published: Jul 11, 2000Modified: Apr 16, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

The default installation of VirusScan 4.5 and NetShield 4.5 has insecure permissions for the registry key that identifies the AutoUpgrade directory, which allows local users to execute arbitrary commands by replacing SETUP.EXE in that directory with a Trojan Horse.

Affected (2)

Products: Network Associates: Netshield, Virusscan

Network Associates

2 products

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Network Associates Netshield	Version 4.5
Network Associates Virusscan	Version 4.5

References (10)

http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0007&L=ntbugtraq&F=&S=&P=2753

Source: cve@mitre.org

PatchVendor Advisory

http://www.osvdb.org/1458

Source: cve@mitre.org

http://www.osvdb.org/4200

Source: cve@mitre.org

http://www.securityfocus.com/bid/1458

Source: cve@mitre.org

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/5177

Source: cve@mitre.org

http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0007&L=ntbugtraq&F=&S=&P=2753

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.osvdb.org/1458

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/4200

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/1458

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/5177

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.