2 matches found
CVE-2013-4882
CVE-2013-4882: McAfee ePolicy Orchestrator (ePO) includes multiple SQL injection vulnerabilities—affecting ePO 4.6.6 and earlier and the ePO extension for MCAfee Agent 4.5/4.6—allowing remote authenticated users to execute arbitrary SQL via the uid parameter in core/showRegisteredTypeDetails.do a...
McAfee ePO Extension for McAfee Agent Multiple Blind SQL Injection (SB10043)
According to its self-reported version number, the version of ePO Extension for McAfee Agent installed on the remote host has multiple blind SQL injection vulnerabilities. A remote, authenticated user could exploit this to execute arbitrary SQL queries, resulting in arbitrary code execution with...