Lucene search

[email protected]CVE-2009-5117

HistoryAug 22, 2012 - 10:42 a.m.

CVE-2009-5117

2012-08-2210:42:03

CWE-200

[email protected]

web.nvd.nist.gov

cve-2009-5117

web post protection

mcafee

host data loss prevention

dlp

information security

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

The Web Post Protection feature in McAfee Host Data Loss Prevention (DLP) 3.x before 3.0.100.10 and 9.x before 9.0.0.422, when HTTP Capture mode is enabled, allows local users to obtain sensitive information from web traffic by reading unspecified files.

Affected configurations

NVD

Node

mcafeehost_data_loss_preventionMatch3.0.100.6

mcafeehost_data_loss_preventionMatch9.0.0.416

CPENameOperatorVersion
mcafee:host_data_loss_preventionmcafee host data loss preventioneq3.0.100.6
mcafee:host_data_loss_preventionmcafee host data loss preventioneq9.0.0.416

CPE	Name	Operator	Version
mcafee:host_data_loss_prevention	mcafee host data loss prevention	eq	3.0.100.6
mcafee:host_data_loss_prevention	mcafee host data loss prevention	eq	9.0.0.416

References

exchange.xforce.ibmcloud.com/vulnerabilities/78447

kc.mcafee.com/corporate/index?page=content&id=SB10011

1.9 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:M/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2009-5117

cvelist1 nvd1 prion1