Lucene search

[email protected]CVE-2017-4028

HistoryApr 03, 2018 - 10:29 p.m.

CVE-2017-4028

2018-04-0322:29:00

CWE-74

[email protected]

web.nvd.nist.gov

cve-2017-4028

microsoft windows

mcafee

registry vulnerability

injection

nvd

5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:N

5 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

12.4%

JSON

Maliciously misconfigured registry vulnerability in all Microsoft Windows products in McAfee consumer and corporate products allows an administrator to inject arbitrary code into a debugged McAfee process via manipulation of registry parameters.

Affected configurations

NVD

Node

mcafeeanti-virus_plusMatch-

mcafeeendpoint_securityMatch10.2

mcafeehost_intrusion_preventionRange≤8.0

mcafeehost_intrusion_preventionMatch8.0patch_1

mcafeehost_intrusion_preventionMatch8.0patch_2

mcafeehost_intrusion_preventionMatch8.0patch_3

mcafeehost_intrusion_preventionMatch8.0patch_4

mcafeehost_intrusion_preventionMatch8.0patch_5

mcafeehost_intrusion_preventionMatch8.0patch_6

mcafeehost_intrusion_preventionMatch8.0patch_7

mcafeehost_intrusion_preventionMatch8.0patch_8

mcafeehost_intrusion_preventionMatch8.0patch_9

mcafeeinternet_securityMatch-

mcafeetotal_protectionMatch-

mcafeevirus_scan_enterpriseRange≤8.8

mcafeevirus_scan_enterpriseMatch8.8patch_9

AND

microsoftwindowsMatch-

CPENameOperatorVersion
mcafee:anti-virus_plusmcafee anti-virus pluseq-
mcafee:endpoint_securitymcafee endpoint securityeq10.2
mcafee:host_intrusion_preventionmcafee host intrusion preventionle8.0
mcafee:internet_securitymcafee internet securityeq-
mcafee:total_protectionmcafee total protectioneq-
mcafee:virus_scan_enterprisemcafee virus scan enterprisele8.8

CPE	Name	Operator	Version
mcafee:anti-virus_plus	mcafee anti-virus plus	eq	-
mcafee:endpoint_security	mcafee endpoint security	eq	10.2
mcafee:host_intrusion_prevention	mcafee host intrusion prevention	le	8.0
mcafee:internet_security	mcafee internet security	eq	-
mcafee:total_protection	mcafee total protection	eq	-
mcafee:virus_scan_enterprise	mcafee virus scan enterprise	le	8.8

CNA Affected

[
  {
    "product": "McAfee Anti-Virus Plus (AVP)",
    "vendor": "McAfee",
    "versions": [
      {
        "lessThan": "29 Mar 2017",
        "status": "affected",
        "version": "170329",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "McAfee Endpoint Security (ENS)",
    "vendor": "McAfee",
    "versions": [
      {
        "lessThan": "10.2 DAT V3 DAT 2932.0",
        "status": "affected",
        "version": "10.2",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "McAfee Host Intrusion Prevention (Host IPS)",
    "vendor": "McAfee",
    "versions": [
      {
        "lessThan": "8.0 Patch 9 Hotfix 1188590",
        "status": "affected",
        "version": "8.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "McAfee Internet Security (MIS)",
    "vendor": "McAfee",
    "versions": [
      {
        "lessThan": "29 Mar 2017",
        "status": "affected",
        "version": "170329",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "McAfee Total Protection (MTP)",
    "vendor": "McAfee",
    "versions": [
      {
        "lessThan": "29 Mar 2017",
        "status": "affected",
        "version": "170329",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "McAfee Virus Scan Enterprise (VSE)",
    "vendor": "McAfee",
    "versions": [
      {
        "lessThan": "8.8 Patch 8/9 Hotfix 1187884",
        "status": "affected",
        "version": "8.8",
        "versionType": "custom"
      }
    ]
  }
]

References

www.securityfocus.com/bid/97958

kc.mcafee.com/corporate/index?page=content&id=SB10193

5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:N

5 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

12.4%

JSON

Related for CVE-2017-4028

prion1 nvd1 cvelist1