KLA10509 Multiple vulnerabilities in McAfee DLPe

Multiple serious vulnerabilities have been found in McAfee DLPe. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, bypass security restrictions, inject arbitrary code or write local files.

Below is a complete list of vulnerabilities

1. XSS vulnerability can be exploited remotely via an unspecified vectors;
2. Multiple CSRF vulnerabilities cab be exploited remotely via requests hijack;
3. An unknown vulnerabilities can be exploited remotely via a specially designed URL or other unspecified vectors.

Original advisories

McAfee bulletin

Related products

McAfee-Data-Loss-Prevention-Endpoint

CVE list

CVE-2015-2760 warning

CVE-2015-2759 high

CVE-2015-2758 high

CVE-2015-2757 warning

Solution

Update to the latest version

Impacts

• OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

• DoS

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

• CI

Code injection. Exploitation of vulnerabilities with this impact can lead to changes in target code.

• SB

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

• WLF

Write Local Files. Exploitation of vulnerabilities with this impact can lead to writing into some inaccessible files. Files that can be read depends on concrete program errors.

Affected Products

• McAfee Data Loss Prevention Endpoint (DLPe) versions earlier than 9.3 Patch 4 Hotfix 16