back to article P0wnographer finds remote code exec bug in McAfee enterprise

McAfee has taken six months to patch 10 critical vulnerabilities in its VirusScan Enterprise Linux client. And these were nasty bugs as when chained they resulted remote code execution as root. Andrew Fasano, security researcher with MIT Lincoln Laboratory, says attackers can chain the flaws to compromise McAfee Linux clients …

  1. Paul Crawford Silver badge
    Trollface

    Reassuring to see McAfee's software for Linux is just as crappy as their software for Windows.

  2. Anonymous Blowhard

    Did they pay him a bug bounty? They should, considering that he's found a very serious issue and kept quiet about it for so long.

  3. John Smith 19 Gold badge
    FAIL

    MIT Lincoln Lab is the bit that deals with defense software and systems.

    So if they use this as their AV I'd guess they'd be pretty annoyed about this. I don't think they do.

    But I'd love to know who does use it as their AV.

    A classic case of big company takes over big company and niche market product is neglected.

    1. Robert Helpmann??
      Childcatcher

      Re: MIT Lincoln Lab is the bit that deals with defense software and systems.

      A lot of US gov agencies use it. Just sayin'

  4. Anonymous Coward
    Joke

    Using McAfee is just like.....

    Mixing up your toothpaste and haemorrhoid cream.

    Gives you receding gums and a huge ring of (false) confidence.

    1. Captain Badmouth
      Paris Hilton

      Re: Using McAfee is just like.....

      Not knowing the difference between putty and KY jelly .......

      All your windows fall out.....

      Paris : does know the difference

  5. adam payne

    Oh Mcafee how it pains me to see people still use your bloated and slow software.

    Don't even get me started on EPO.

  6. davenewman

    Dr. Solomon

    It all went downhill ever since McAfee took over Dr. Solomons anti-virus in the 1990s.

  7. PeterM42
    Alien

    That's why.........

    ...it is called McCRAPAfee.

  8. Cynic_999

    Great spyware platform

    And AV products make great spyware platforms. It has access to all your files and is not seen as suspicious if it periodically scans all your HDDs. It is also expected to "phone home" on a frequent basis.

  9. ecofeco Silver badge

    Like Symantec...

    ...how are these shit companies still in business?

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like