RE: iDEFENSE Security Advisory 04.18.05: McAfee Internet Security Suite 2005 Insecure File Permission Vulnerability

From: Boyce, Nick (nick.boyce_at_eds.com)
Date: 04/20/05

  • Next message: GulfTech Security Research: "Multiple Security Issues Found In AZBB"
    To: bugtraq@securityfocus.com, vulnwatch@vulnwatch.org, full-disclosure@lists.grok.org.uk
    Date: Wed, 20 Apr 2005 18:02:12 +0100
    
    

    Hmmm ...

    [Section VI. Vendor Response]

        "This issue affects an extremely small subset of the McAfee
        Internet Security Suite 2005 user base as the vast majority
        of home users do not use non-Administrator Windows accounts"

        "McAfee's key priority is the security of our customers."

    If McAfee believes the correct functioning of its product depends on the
    first statement being true, then the second statement doesn't seem to quite
    fit.

    Nick Boyce
    EDS, Bristol, UK


  • Next message: GulfTech Security Research: "Multiple Security Issues Found In AZBB"