Reporter SAINT Corporation
McAfee ePolicy Orchestrator and Protection Pilot are centralized security management products. These products include an HTTP server implemented by the
A buffer overflow vulnerability in the McAfee HTTP server allows remote attackers to execute arbitrary commands by sending a request containing long source headers.
Apply the patch referenced in Secunia advisory 22222.
Exploit works on McAfee Protection Pilot 1.1.0.