Windows Systems Threatened via McAfee

By Harold Eckstein on August 2, 2006, 5:49 PM
McAfee SecurityCenter versions 4.3 all through 6.0.22 open Windows systems to control by hackers. McAfee Security Center controls execution of McAfee Internet Security Suite 2006, McAfee Wireless Home Network Security, McAfee Personal Firewall Plus, McAfee VirusScan, McAfee Privacy Service, McAfee SpamKiller and McAfee AntiSpyware. Security Center version 7 was only recently released, while Version 6 is in wide use.

The vulnerability was discovered by researchers at eEye Digital Security, which has published an announcement here. The vulnerability exists for systems running Internet Explorer.

McAfee published a security advisory (McAfee bug), though the company made no announcement on its home page or virus information pages of its product’s vulnerability. McAfee’s bulletin does not describe OS or Internet Explorer details but does describe how the threat would be exploited:

This attack requires the consumer to perform certain actions in order to be exploited. For example receiving an e-mail from an un-trusted source and clicking on a malicious URL. ...In order to accomplish this exploit, a user would have to force internet explorer (sic) to render a malicious web page which has been generated by the attacker. The attack requires reverse engineering of the software as well as the assistance of the user.
McAfee has made available a patch to SecurityCenter. Login at McAfee’s site or click 'Update' in Security Center

What computer user does not use or rely upon security software such as McAfee's to protect his systems from malicious software? It is instructive to remember that the security tools, too, are not invulnerable. See also, for example, these reports of security software vulnerabilities, Sophos, Kaspersky, Symantec.




User Comments: 3

Got something to say? Post a comment
crossfire851 said:
Another reason not to have McaCrap.
zephead said:
this happens regularly with mcafee's products. mcafee can't stop a french soldier, let alone a computer virus. it's a wasteful load of crap if i ever saw one...i'm just amazed that they're still in business.
nimo333 said:
Mcafee is going to die someday with a big law sue case on its back.
Load all comments...

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.