[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: iDEFENSE Security Advisory 04.18.05: McAfee Internet Security Suite 2005 Insecure File Permission Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx, vulnwatch@xxxxxxxxxxxxx, full-disclosure@xxxxxxxxxxxxxxxxx
Subject: RE: iDEFENSE Security Advisory 04.18.05: McAfee Internet Security Suite 2005 Insecure File Permission Vulnerability
From: "Boyce, Nick" <nick.boyce@xxxxxxx>
Date: Wed, 20 Apr 2005 18:02:12 +0100

Hmmm ...

[Section VI. Vendor Response]

    "This issue affects an extremely small subset of the McAfee 
    Internet Security Suite 2005 user base as the vast majority 
    of home users do not use non-Administrator Windows accounts"

    "McAfee's key priority is the security of our customers."

If McAfee believes the correct functioning of its product depends on the
first statement being true, then the second statement doesn't seem to quite
fit.

Nick Boyce
EDS, Bristol, UK

Prev by Date: Multiple eGroupware Vulnerabilities
Next by Date: Multiple Security Issues Found In AZBB
Previous by thread: Multiple eGroupware Vulnerabilities
Next by thread: Multiple Security Issues Found In AZBB
Index(es):
- Date
- Thread