Lucene search
K

6 matches found

Check Point Advisories
Check Point Advisories
added 2014/06/22 12:0 a.m.9 views

McAfee ePolicy Orchestrator Remote Code Execution (CVE-2013-0140; CVE-2013-0141)

A remote code execution vulnerability has been reported in McAfee ePolicy Orchestrator ePO. The vulnerability is due to an error in the ePO server that fails to properly sanitize user supplied data. A remote attacker can exploit this weakness to execute arbitrary code via a specially crafted http...

7.9CVSS7.7AI score0.02544EPSS
Exploits4
0day.today
0day.today
added 2014/04/29 12:0 a.m.69 views

McAfee ePolicy Orchestrator 4.6.0-4.6.5 (ePowner) - Multiple Vulnerabilities

McAfee ePolicy Owner ePowner version 0.1 is an exploit that can add an administrative user to McAfee ePolicy Orchestrator as well as execute arbitrary commands on versions 4.6.0 through 4.6.5. Exploit Title: McAfee ePolicy Orchestrator 4.6.0-4.6.5 ePowner - Multiple vulnerabilities Date: 20...

7.9CVSS0.3AI score0.02544EPSS
Exploits4
OpenVAS
OpenVAS
added 2013/08/09 12:0 a.m.41 views

McAfee ePolicy Orchestrator (ePO) Multiple Vulnerabilities-01 (Aug 2013)

McAfee ePolicy Orchestrator is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

7.9CVSS6.4AI score0.02544EPSS
Exploits4References5
securityvulns
securityvulns
added 2013/07/15 12:0 a.m.74 views

TA13-193A: Exploit Tool Targets Vulnerabilities in McAfee ePolicy Orchestrator (ePO)

US Computer Emergency Readiness Team banner graphic National Cyber Awareness System: TA13-193A: Exploit Tool Targets Vulnerabilities in McAfee ePolicy Orchestrator ePO 07/12/2013 02:19 PM EDT Original release date: July 12, 2013 Systems Affected McAfee ePolicy Orchestrator ePO Overview A new...

7.9CVSS6.7AI score0.02544EPSS
Exploits4
CVE
CVE
added 2013/05/01 10:0 a.m.79 views

CVE-2013-0140

CVE-2013-0140 describes a SQL injection vulnerability in the Agent-Handler component of McAfee ePolicy Orchestrator (ePO) , affecting versions before 4.5.7 and 4.6.x before 4.6.6. A remote attacker can execute arbitrary SQL commands by sending a crafted request over the Agent-Server communication...

7.9CVSS8.2AI score0.02544EPSS
Exploits4References5Affected Software1
CERT
CERT
added 2013/04/29 12:0 a.m.63 views

McAfee ePolicy Orchestrator 4.6.4 and earlier pre-authenticated SQL injection and directory path traversal vulnerabilities

Overview McAfee ePolicy Orchestrator 4.6.4 and earlier contains a pre-authenticated sql injection and directory path traversal vulnerability which could allow an attacker to inject malicious code into the system. Description McAfee ePolicy Orchestrator 4.6.4 and earlier contains a pre-authenticat...

7.9CVSS8.2AI score0.02544EPSS
Exploits4References1
Rows per page
Query Builder