Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Heads Up: new flaw in McAfee SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Heads Up: new flaw in McAfee
The ISC has received several notifications of an upcoming security advisory regarding McAfee products.  The flaw provides remote execution of code in the following software:
  • McAfee Internet Security Suite 2006
  • McAfee Wireless Home Network Security
  • McAfee Personal Firewall Plus
  • McAfee VirusScan
  • McAfee Privacy Service
  • McAfee SpamKiller
  • McAfee AntiSpyware
Apparently 2007 editions of the products, released this past Saturday, are not affected.  There is also an article on the Toronto Globe and Mail covering the issue.

Thanks to Jacques and Bruce for drawing our attention to the issue.

Word from McAfee is that a patch will be automatically released tomorrow.

28 Posts
Aug 1st 2006

Sign Up for Free or Log In to start participating in the conversation!