### [CVE-2016-4534](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4534)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brightgreen)

### Description

The McAfee VirusScan Console (mcconsol.exe) in McAfee VirusScan Enterprise 8.8.0 before Hotfix 1123565 (8.8.0.1546) on Windows allows local administrators to bypass intended self-protection rules and unlock the console window by closing registry handles.

### POC

#### Reference
- http://packetstormsecurity.com/files/download/136089/mcafeevses-bypass.html
- http://seclists.org/fulldisclosure/2016/Mar/13
- https://kc.mcafee.com/corporate/index?page=content&id=SB10158
- https://kc.mcafee.com/resources/sites/MCAFEE/content/live/PRODUCT_DOCUMENTATION/26000/PD26485/en_US/VSE_8_8_HF1123565_release_notes.pdf
- https://lab.mediaservice.net/advisory/2016-01-mcafee.txt
- https://www.exploit-db.com/exploits/39531/

#### Github
No PoCs found on GitHub currently.