17 matches found
EUVD-2009-5070
Malware in sbrugna...
McAfee Common Management Agent Installation Detection
Binary data mcafeecmainstalled.nbin...
CVE-2009-5115
McAfee Common Management Agent CMA 3.5.5 through 3.5.5.588 and 3.6.0 through 3.6.0.608, and McAfee Agent 4.0 before Patch 3, allows remote authenticated users to overwrite arbitrary files by accessing a report-writing ActiveX control COM object...
McAfee Common Management Agent < 3.6.0.603 FrameworkService.exe AVClient DoS
According to its banner, the version of the McAfee Common Management Agent CMA running on the remote host is prior to 3.6.0.603. It is, therefore, affected by a denial of service vulnerability in FrameworkService.exe due to a memory corruption issue. An unauthenticated, remote attacker can exploi...
McAfee Common Management Agent Detection
McAfee Common Management Agent CMA, a component of McAfee's ePolicy Orchestrator ePO system security management solution, is running on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid32397; scriptversion"1.24";...
Common Management Agent 3.x vulnerable to information leakage
Overview Common Management Agent used in ePolicy Orchestrator and ProtectionPilot has a problem in directory access right setting which allows an attacker to obtain or view a list of files. Impact A remote attacker could view files. Solution None...
McAfee Common Management Agent 3.6.0 UDP Packet Handling Format String (credentialed check)
The remote host is running a Common Management Agent, a component of the ePolicy Orchestrator system security management solution from McAfee. The version of the Common Management Agent on the remote host is earlier than 3.6.0.595 and, as such, contains a format string vulnerability. If configure...
McAfee Common Management Agent < 3.6.0.595 UDP Packet Handling Format String
According to its banner, the version of McAfee Common Management Agent CMA running on the remote host is prior to 3.6.0.595. It is, therefore, affected by a flaw in the logDetail function of applib.dll due to calling vsnwprintf without the needed format string argument. An unauthenticated, remote...
CVE-2008-1357
Format string vulnerability in the logDetail function of applib.dll in McAfee Common Management Agent CMA 3.6.0.574 Patch 3 and earlier, as used in ePolicy Orchestrator 4.0.0 build 1015, allows remote attackers to cause a denial of service crash or execute arbitrary code via format string...
Format string
Format string vulnerability in the logDetail function of applib.dll in McAfee Common Management Agent CMA 3.6.0.574 Patch 3 and earlier, as used in ePolicy Orchestrator 4.0.0 build 1015, allows remote attackers to cause a denial of service crash or execute arbitrary code via format string...
CVE-2008-1357
Format string vulnerability in the logDetail function of applib.dll in McAfee Common Management Agent CMA 3.6.0.574 Patch 3 and earlier, as used in ePolicy Orchestrator 4.0.0 build 1015, allows remote attackers to cause a denial of service crash or execute arbitrary code via format string...
CVE-2006-5274
Integer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent CMA 3.5.5.438 allows remote attackers to cause a denial of service CMA Framework service crash and possibly execute arbitrary code via unspecified vectors...
CVE-2006-5272
Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent CMA 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet...
CVE-2006-5272
Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent CMA 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet...
CVE-2006-5273
The CVE-2006-5273 entry describes a heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5–3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438–3.6.0.453. The vulnerability allows remote attackers to execute arbitrary code via a crafted packet. Connected docume...
CVE-2006-5272
The CVE-2006-5272 issue affects McAfee CMA (Common Management Agent) prior to 3.6.0.546. A stack-based buffer overflow in the CMA component occurs when handling certain ping packets received over the network, enabling a remote attacker to potentially execute arbitrary code. Affected versions incl...
ePolicy Orchestrator Symlink Arbitrary Privileged File Access
The remote host is running ePolicy Orchestrator / ProtectionPilot, a system security management solution from McAfee. According to its banner, the Common Management Agent CMA associated with ePolicy Orchestrator / ProtectionPilot on the remote host can be used by local users to view files residin...