McAfee Remediation Client ActiveX Control Buffer Overflow

2009-10-15T15:22:16
ID MSF:EXPLOIT/WINDOWS/FILEFORMAT/MCAFEE_HERCULES_DELETESNAPSHOT
Type metasploit
Reporter Rapid7
Modified 2020-01-15T01:47:27

Description

This module exploits a stack buffer overflow in McAfee Remediation Agent 4.5.0.41. When sending an overly long string to the DeleteSnapshot() method of enginecom.dll (3.7.0.9) an attacker may be able to execute arbitrary code. This control is not marked safe for scripting, so choose your attack vector accordingly.