There is a new exploit available for McAfee VirusScan 10.0.21. This one is an ActiveX overflow. There is a PoC available on milw0rm. This one was posted two days ago.
There is an alert over on Secunia.com regarding this.
From Secunia:
Description:
A vulnerability has been reported in various McAfee products, which can be exploited by malicious people to compromise a user’s system.
The vulnerability is caused due to an error within the SecurityCenter Subscription Manager ActiveX control (McSubMgr.dll) when handling the “IsOldAppInstalled()” method. This can be exploited to cause a buffer overflow via a specially crafted argument passed to the said method.
Successful exploitation allows execution of arbitrary code when a user visits a malicious website.
The vulnerability affects versions prior to 7.2.147 and 6.0.25.
Solution:
The fix has reportedly been available via automatic updates since March 22, 2007.
Tags: McAfee, ActiveX Exploit, Buffer Overflow
