CVE-2006-3623

2006-07-18T15:46:00
ID CVE-2006-3623
Type cve
Reporter cve@mitre.org
Modified 2018-10-18T16:48:00

Description

Directory traversal vulnerability in Framework Service component in McAfee ePolicy Orchestrator agent 3.5.0.x and earlier allows remote attackers to create arbitrary files via a .. (dot dot) in the directory and filename in a PropsResponse (PackageType) request.