at(1) Persistence

This module executes a metasploit payload utilizing at1 to execute jobs at a specific time. It should work out of the box with any UNIX-like operating system with atd running. Verified on Kali linux and OSX 13.7.4 Module Options msf use exploit/multi/persistence/at msf exploitat show targets...

CVE-2020-7269

Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense ATD prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deploy...

CVE-2020-7270

Summary: CVE-2020-7270 affects McAfee Advanced Threat Defense (ATD) web interface. In ATD versions prior to 4.12.2, remote authenticated users can view sensitive unencrypted information through a specially crafted HTTP request parameter, as described across multiple sources (NVD, CNVD, Red Hat, C...

CVE-2020-7269 Sensitive Information Exposure in McAfee ATD

Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense ATD prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deploy...

CVE-2020-7262

Improper Access Control vulnerability in McAfee Advanced Threat Defense ATD prior to 4.10.0 allows local users to view sensitive files via a carefully crafted HTTP request parameter...

Improper access control

Improper Access Control vulnerability in McAfee Advanced Threat Defense ATD prior to 4.10.0 allows local users to view sensitive files via a carefully crafted HTTP request parameter...

CVE-2020-7262

CVE-2020-7262 affects McAfee Advanced Threat Defense (ATD) prior to version 4.10.0. The vulnerability is Improper Access Control that allows a local attacker to view sensitive files via a crafted HTTP request parameter. Public sources in the connected documents confirm information disclosure as t...

Privilege escalation

Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense ATD 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command...

CVE-2020-7254

McAfee Advanced Threat Defense (ATD) Privilege Escalation (CVE-2020-7254) affects ATD 4.x prior to 4.8.2. The root cause is improper access controls on sudo commands in the command line interface, enabling local users to escalate privileges and execute arbitrary code. Exploitation is local and re...

CVE-2020-7254 Privilege escalation in Advanced Threat Defense

Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense ATD 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command...

CVE-2019-3662

Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense ATD prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests...

CVE-2019-3661

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' in McAfee Advanced Threat Defense ATD prior to 4.8 allows remote authenticated attacker to execute database commands via carefully constructed time based payloads...

Design/Logic Flaw

Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense ATD prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted i...

Path traversal

Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense ATD prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests...

CVE-2019-3663

The CVE-2019-3663 issue affects McAfee Advanced Threat Defense (ATD) prior to version 4.8. It arises from unprotected storage of credentials, enabling a local attacker to read the root password from sensitive files; the root password is common across ATD deployments prior to 4.8. CVSS assessments...

CVE-2019-3663 Advanced Threat Defense (ATD) - Unprotected storage of shared credentials vulnerability

Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense ATD prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted i...

CVE-2019-3662 Advanced Threat Defense (ATD) - Path Traversal: '/absolute/pathname/here' vulnerability

Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense ATD prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests...

CVE-2019-3662

CVE-2019-3662 affects McAfee Advanced Threat Defense (ATD) prior to 4.8. The vulnerability is a path traversal in which a crafted HTTP request allows a remote authenticated attacker to access files outside a restricted directory due to improper filtering of path elements. Reported impact indicate...

CVE-2019-3660

Improper Neutralization of HTTP requests in McAfee Advanced Threat Defense ATD prior to 4.8 allows remote authenticated attacker to execute commands on the server remotely via carefully constructed HTTP requests...

CVE-2019-3651

Information Disclosure vulnerability in McAfee Advanced Threat Defense ATD prior to 4.8 allows remote authenticated attackers to gain access to ePO as an administrator via using the atduser credentials, which were too permissive...