CVE-2020-7315 McAfee Agent DLL injection
DLL injection in McAfee Agent allowing a local administrator to kill the antivirus, or tamper with it, without knowing the McAfee password
The macompatsvc.exe
McAfee Agent process tries to load the missing wow64log.dll
DLL file (in System32
). By DLL planting a malicious file, a local Windows administrator can achieve code execution in the context of this trusted McAfee process and kill other McAfee processes thus achieving a denial of service on the antivirus which cannot detect and clean viruses anymore.