| VID |
23198 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
Daemon |
| Detailed Description |
The ePolicy Orchestrator, according to its version number, has multiple memory corruption vulnerabilities in the CMA. McAfee ePolicy Orchestrator(ePO) is the all-in-one tool for centralized, enterprise-class system security management and reporting. McAfee Common Management Agent (CMA) versions prior to 3.6.0 Patch 1 (3.6.0.546) are vulnerable to four different buffer overflow vulnerabilities. By sending a specially-crafted request, a remote attacker could exploit these vulnerabilities to execute arbitrary code on the affected host or cause a denial of service.
* Note: This check solely relied on the version number of the McAfee ePolicy Orchestrator program installed on the remote system to assess this vulnerability, so this might be a false positive.
* References:
https://knowledge.mcafee.com/article/761/613364_f.SAL_Public.html
https://knowledge.mcafee.com/article/762/613365_f.SAL_Public.html
https://knowledge.mcafee.com/article/763/613366_f.SAL_Public.html
https://knowledge.mcafee.com/article/764/613367_f.SAL_Public.html
http://www.iss.net/threats/269.html
http://secunia.com/advisories/26029/
* Platforms Affected:
McAfee, Inc., Common Management Agent (CMA) versions prior to 3.6.0 Patch 1 (3.6.0.546)
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version of McAfee Common Management Agent (CMA) (3.6.0 Patch 1 (3.6.0.546) or later), as listed in the vendor's advisories for details:
https://knowledge.mcafee.com/article/761/613364_f.SAL_Public.html
https://knowledge.mcafee.com/article/762/613365_f.SAL_Public.html
https://knowledge.mcafee.com/article/763/613366_f.SAL_Public.html
https://knowledge.mcafee.com/article/764/613367_f.SAL_Public.html |
| Related URL |
CVE-2006-5271,CVE-2006-5272,CVE-2006-5273,CVE-2006-5274 (CVE) |
| Related URL |
24863 (SecurityFocus) |
| Related URL |
31162,31163,31164,31165,35304 (ISS) |
|
