ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Network management Toolkit

McAfee security problem exposed

Dawn Kawamoto CNET News.com

Published: 20 Apr 2005 10:05 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

A flaw in McAfee Internet Security Suite 2005 could let employees sharing the same computer break into one another's files, according to security consultant iDefense.

The vulnerability, which exists in the default settings applied during installation, gives anyone the same access rights on a PC as an IT administrator. That, in effect, would let someone remove any restricted access specified on a PC, according to a report released by iDefense on Monday. It could also let an employee install software prohibited by his employer.

An employee who shares a computer with co-workers, for example, could then access colleagues' files or install programs on the machine.

Home users are unlikely to be affected by this flaw because they generally do not assign user restrictions on their PCs, said Michael Sutton, iDefense Labs director.

"This is not a high-risk vulnerability," Sutton said. "High-risk vulnerabilities are the ones where you can gain remote access of the PC. Here, you would have to get into the company's building and gain access to the computer."

McAfee was not immediately available for comment.

According to iDefense, McAfee is distributing a patch for Internet Security Suite 2005 to all registered users who have their settings on automatic updates. McAfee's suite offers virus protection, a firewall and privacy controls.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with Dell

Did you find this article useful?
36 out of 49 people found this useful


Talkback

Post a comment


Full Talkback thread

1 comment

  1. hi i bought mcafee 2005 had it on my computorafter... don brown

Related Links

More In Network management


Company/Topic Alerts

Create a new alert from the list below:





Related Jobs

Application Support Team Lead - Support Analyst - East Midlands

To be considered, you will need to demonstrate the following: - A degree or achieved proficiency in SFIA skills at level 4 (Details of SFIA available ...

SAP HCM Business Development Executive (Europe)

This includes major involvement in ERP conversion and full implementation of SAP's HCM suite offering. Successful candidates will be expected to: ...

Helpdesk Support Analyst (1st/2nd Line Support)

The key skills, experience, and knowledge criteria for this vacancy include: - A high degree of resilience and the ability to operate with precision ...

Featured Talkback

Could it be that ISP’s are making this out to be a bigger problem than it actually is? We’re a small country with an internet penetration of less than 60%, for every Youtuber there’s someone who only uses the internet to check their emails, more people surf on their mobile handsets than a few years ago. Surely things should even themselves up.

By: harpless

Read full story:
Unlimited-broadband offers to go 'within a year'

On The Road Blog

Mobile Security Expert: Your Camera Ph...

Mobile Security Expert: Your Camera Phone Got Hacked Author: Eric Everson, Founder MyMobiSafe.com Have you ever heard someone say “I’d like to be a fly on the wall in that room.”?... More

Post a comment

Eee 1000 + iPhone 3G = the ultimate mo...

Having left the comforting bosom of ZDNet.co.uk to strike out on my own as a freelance journalist recently, I found myself contemplating a shocking truth – I was going to have to shell... More

Post a comment

Think Your Skype Call is Secure? Read...

There is growing, and credible, speculation that Skype has built in a back door to allow monitoring of SKype calls. Heise Online has a good article about it. So, what we have now... More

1 comment