Lucene search

K
saintSAINT CorporationSAINT:F319CD40E9BEF2447869BBA2744147E0
HistoryDec 23, 2016 - 12:00 a.m.

McAfee VirusScan Enterprise for Linux authentication token brute force

2016-12-2300:00:00
SAINT Corporation
download.saintcorporation.com
23
mcafee virusscan enterprise
authentication token brute force
cve-2016-8023
linux
security vulnerability
mcafee security bulletin.

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.5

Confidence

High

EPSS

0.008

Percentile

81.9%

Added: 12/23/2016
CVE: CVE-2016-8023
BID: 94823

Background

McAfee VirusScan Enterprise for Linux is real-time, anti-malware software for Linux.

Problem

McAfee VirusScan Enterprise for Linux allows remote attackers to execute arbitrary commands by exploiting multiple vulnerabilities, including the ability to brute-force authentication tokens, a file write vulnerability using a malicious update server, and an authenticated file execution vulnerability.

Resolution

Apply the fix referenced in McAfee Security Bulletin SB10181.

References

https://nation.state.actor/mcafee.html
http://news.softpedia.com/news/vulnerabilities-found-in-linux-security-software-can-give-hackers-root-access-510936.shtml

Limitations

Exploit works on McAfee VirusScan Enterprise for Linux 1.9.2 through 2.0.2. Since this exploit uses a brute-force attack it may take some time to run.

Platforms

Linux

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

8.5

Confidence

High

EPSS

0.008

Percentile

81.9%