Lucene search

[email protected]NVD:CVE-2006-5274

HistoryJul 12, 2007 - 12:30 a.m.

CVE-2006-5274

2007-07-1200:30:00

[email protected]

web.nvd.nist.gov

CVSS2

7.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

Low

EPSS

0.032

Percentile

91.2%

JSON

Integer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 allows remote attackers to cause a denial of service (CMA Framework service crash) and possibly execute arbitrary code via unspecified vectors.

Affected configurations

Nvd

Node

mcafeecommon_management_agentMatch3.6.0.438

mcafeeepolicy_orchestratorMatch3.5.0

mcafeeepolicy_orchestratorMatch3.6.0

mcafeeprotectionpilotMatch1.1.1

mcafeeprotectionpilotMatch1.1.1p3

mcafeeprotectionpilotMatch1.5.0

VendorProductVersionCPE
mcafeecommon_management_agent3.6.0.438cpe:2.3:a:mcafee:common_management_agent:3.6.0.438:*:*:*:*:*:*:*
mcafeeepolicy_orchestrator3.5.0cpe:2.3:a:mcafee:epolicy_orchestrator:3.5.0:*:*:*:*:*:*:*
mcafeeepolicy_orchestrator3.6.0cpe:2.3:a:mcafee:epolicy_orchestrator:3.6.0:*:*:*:*:*:*:*
mcafeeprotectionpilot1.1.1cpe:2.3:a:mcafee:protectionpilot:1.1.1:*:*:*:*:*:*:*
mcafeeprotectionpilot1.1.1cpe:2.3:a:mcafee:protectionpilot:1.1.1:p3:*:*:*:*:*:*
mcafeeprotectionpilot1.5.0cpe:2.3:a:mcafee:protectionpilot:1.5.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mcafee	common_management_agent	3.6.0.438	cpe:2.3:a:mcafee:common_management_agent:3.6.0.438:::::::*
mcafee	epolicy_orchestrator	3.5.0	cpe:2.3:a:mcafee:epolicy_orchestrator:3.5.0:::::::*
mcafee	epolicy_orchestrator	3.6.0	cpe:2.3:a:mcafee:epolicy_orchestrator:3.6.0:::::::*
mcafee	protectionpilot	1.1.1	cpe:2.3:a:mcafee:protectionpilot:1.1.1:::::::*
mcafee	protectionpilot	1.1.1	cpe:2.3:a:mcafee:protectionpilot:1.1.1:p3::::::
mcafee	protectionpilot	1.5.0	cpe:2.3:a:mcafee:protectionpilot:1.5.0:::::::*

References

secunia.com/advisories/26029

www.iss.net/threats/269.html

www.osvdb.org/36101

www.securityfocus.com/bid/24863

www.securitytracker.com/id?1018363

www.vupen.com/english/advisories/2007/2498

exchange.xforce.ibmcloud.com/vulnerabilities/31165

knowledge.mcafee.com/article/764/613367_f.SAL_Public.html

CVSS2

7.6

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

Low

EPSS

0.032

Percentile

91.2%

JSON

Related for NVD:CVE-2006-5274

cve2 cvelist2 prion1 nvd1 nessus1