CVE-2006-6474
Untrusted search path vulnerability in McAfee VirusScan for Linux 4510e and earlier includes the current working directory in the DT_RPATH environment variable, which allows local users to load arbitrary ELF DSO libraries and execute arbitrary code by installing malicious libraries in that directory.
| Software | From | Fixed in |
|---|---|---|
| mcafee / virusscan | - | 4510e.x |
- http://secunia.com/advisories/23278
- http://secunia.com/advisories/23429
- http://security.gentoo.org/glsa/glsa-200612-15.xml
- http://securitytracker.com/id?1017385
- http://www.securityfocus.com/bid/21592
- http://www.vupen.com/english/advisories/2006/5023
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30898
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime