CVE-2021-31847

Published: Sep 22, 2021Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Improper access control vulnerability in the repair process for McAfee Agent for Windows prior to 5.7.4 could allow a local attacker to perform a DLL preloading attack using unsigned DLLs. This would result in elevation of privileges and the ability to execute arbitrary code as the system user, through not correctly protecting a temporary directory used in the repair process and not checking the DLL signature.

Affected (1)

Products: Mcafee: Agent

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Mcafee Agent	Before 5.7.4

Related CWEs

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Improper Verification of Cryptographic Signature

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

Uncontrolled Search Path Element

The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.

References (4)

https://kc.mcafee.com/corporate/index?page=content&id=SB10369

Source: trellixpsirt@trellix.com

Broken Link

https://www.zerodayinitiative.com/advisories/ZDI-21-1104/

Source: trellixpsirt@trellix.com

Third Party AdvisoryVDB Entry

https://kc.mcafee.com/corporate/index?page=content&id=SB10369

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

https://www.zerodayinitiative.com/advisories/ZDI-21-1104/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.