Vulnerability Details CVE-2002-2282
McAfee VirusScan 4.5.1, when the WebScanX.exe module is enabled, searches for particular DLLs from the user's home directory, even when browsing the local hard drive, which allows local users to run arbitrary code via malicious versions of those DLLs.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.4%
CVSS Severity
CVSS v2 Score 6.9
References
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0007.html
- http://www.securityfocus.com/bid/6288
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10741
- http://archives.neohapsis.com/archives/bugtraq/2002-12/0007.html
- http://www.securityfocus.com/bid/6288
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10741