Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbLuigi AuriemmaEDB-ID:31399
HistoryMar 12, 2008 - 12:00 a.m.

McAfee Framework ePolicy 3.x - Orchestrator '_naimcomn_Log' Remote Format String

2008-03-1200:00:00
Luigi Auriemma
www.exploit-db.com
13

AI Score

7.4

Confidence

Low

EPSS

0.827

Percentile

98.5%

JSON
source: https://www.securityfocus.com/bid/28228/info

McAfee Framework is prone to a remote format-string vulnerability.

Exploiting this issue will allow attackers to execute arbitrary code with the permissions of the framework or of an application that uses the framework. Failed attacks will likely cause denial-of-service conditions.
McAfee Common Managemetn Agent 3.6.0.574 (Patch3) or earlier, McAfee Agent (MA) 4.0, Framework 2.6.0.569 and ePolicy Orchestrator 4.0 are vulnerable to this issue; other versions may also be affected.

NOTE: This issue occurs only when the default debug level (7) is raised to 8. 

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/31399.zip

Related

nessus 2
checkpoint_advisories 1
prion 1
nvd 1
cve 1
cvelist 1
nessus
nessus
McAfee Common Management Agent < 3.6.0.595 UDP Packet Handling Format String
2008-04-03 00:00:00
McAfee Common Management Agent 3.6.0 UDP Packet Handling Format String (credentialed check)
2008-04-03 00:00:00
checkpoint_advisories
checkpoint_advisories
McAfee ePolicy Orchestrator Framework Services Log Handling Format String (CVE-2008-1357)
2010-02-09 00:00:00
prion
prion
Format string
2008-03-17 17:44:00
nvd
nvd
CVE-2008-1357
2008-03-17 17:44:00
cve
cve
CVE-2008-1357
2008-03-17 17:44:00
cvelist
cvelist
CVE-2008-1357
2008-03-17 17:00:00

AI Score

7.4

Confidence

Low

EPSS

0.827

Percentile

98.5%

JSON
Related for EDB-ID:31399
nessus2checkpoint_advisories1prion1nvd1cve1cvelist1