McAfee Security Scan Plus (MSS+) 4.1.262.1 update available

Attackers could have increased their rights due to a vulnerability in the virus protection McAfee Security Scan Plus. This made it easier to get into the system. Now an updated for McAfee Security Scan Plus (MSS+) is available that fixes the vulnerability.

Due to insufficient privilege management in McAfee Security Scan Plus, local attackers could have modified a configuration file. As a result, they could have executed any code with elevated privileges, since an integrity check of the configuration file simply did not take place (CVE-2022-37025, CVSS 7.9, risk high). This is a LOLBin attack, McAfee explains in the according security advisory.

Cyber ​​criminals often try to use existing tools to look around machines and networks and thus permanently establish themselves. The local programs do not arouse any suspicion and usually do not trigger any virus protection. This is called LOLBin, short for Living of the land attack.

With the new software version McAfee Security Scan Plus (MSS+) 4.1.262.1, the security vulnerability should be closed. This will be rolled out automatically, but users and administrators should check the current version. Users can visit the Product Downloads page and install the latest version.