Full Disclosure mailing list archives

RE: iDEFENSE Security Advisory 04.18.05: McAfee Internet Security Suite 2005 Insecure File Permission Vulnerability

From: "Boyce, Nick" <nick.boyce () eds com>
Date: Wed, 20 Apr 2005 18:02:12 +0100

Hmmm ...

[Section VI. Vendor Response]

    "This issue affects an extremely small subset of the McAfee 
    Internet Security Suite 2005 user base as the vast majority 
    of home users do not use non-Administrator Windows accounts"

    "McAfee's key priority is the security of our customers."

If McAfee believes the correct functioning of its product depends on the
first statement being true, then the second statement doesn't seem to quite
fit.

Nick Boyce
EDS, Bristol, UK
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

iDEFENSE Security Advisory 04.18.05: McAfee Internet Security Suite 2005 Insecure File Permission Vulnerability iDEFENSE Labs (Apr 18)
- <Possible follow-ups>
- RE: iDEFENSE Security Advisory 04.18.05: McAfee Internet Security Suite 2005 Insecure File Permission Vulnerability Boyce, Nick (Apr 20)