CVE-2012-5879

An ActiveX control in McHealthCheck.dll in McAfee Virtual Technician MVT and ePO-MVT 6.5.0.2101 and earlier allows remote attackers to modify or create arbitrary files via a full pathname argument to the Save method...

McAfee Virtual Technician ActiveX Control Insecure Method Exposure (CVE-2012-5879)

An insecure method exposure vulnerability has been reported in McAfee Virtual Technician...

McAfee Virtual Technician (MVT) 6.5.0.2101 - Insecure ActiveX Method

McAfee Virtual Technician MVT 6.5.0.2101 - Insecure ActiveX Method Advisory ID: HTB23128 Product: McAfee Virtual Technician MVT 6.5.0.2101 Vendor: McAfee Vulnerable Versions: 6.5.0.2101 and probably prior Tested Version: 6.5.0.2101 on Windows 7 SP1 and Internet Explorer 9 Vendor Notification:...

McAfee Virtual Technician (MVT) 6.5.0.2101 - Insecure ActiveX Method

Advisory ID: HTB23128 Product: McAfee Virtual Technician MVT 6.5.0.2101 Vendor: McAfee Vulnerable Versions: 6.5.0.2101 and probably prior Tested Version: 6.5.0.2101 on Windows 7 SP1 and Internet Explorer 9 Vendor Notification: November 19, 2012 Vendor Patch: March 15, 2013 Public Disclosure: Marc...

CVE-2012-5879

Summary: CVE-2012-5879 affects McAfee Virtual Technician (MVT) and ePO-MVT prior to remediation, via the ActiveX control in McHealthCheck.dll. The insecure Save() method on McHealthCheck.dll can cause remote attackers to modify or create arbitrary files using a full pathname argument, potentially...

McAfee Virtual Technician (MVT) 6.5.0.2101 Unsafe Active-X

Advisory ID: HTB23128 Product: McAfee Virtual Technician MVT 6.5.0.2101 Vendor: McAfee Vulnerable Versions: 6.5.0.2101 and probably prior Tested Version: 6.5.0.2101 on Windows 7 SP1 and Internet Explorer 9 Vendor Notification: November 19, 2012 Vendor Patch: March 15, 2013 Public Disclosure: Marc...