5 matches found
McAfee Cloud Single Sign On < 4.0.1 Information Disclosure (SB10066) (Windows)
A version of McAfee Cloud Single Sign On MCSSO prior to 4.0.1 is installed on the remote host. It is, therefore, affected by an information disclosure vulnerability due to a failure to sanitize user-supplied input, resulting in potential directory traversal. An attacker could potentially exploit...
McAfee Cloud Single Sign On < 4.0.1 Information Disclosure (SB10066) (McAfee Linux OS)
A version of McAfee Cloud Single Sign On MCSSO prior to 4.0.1 is installed on the remote host. It is, therefore, affected by an information disclosure vulnerability due to a failure to sanitize user-supplied input, resulting in a potential directory traversal. An attacker could potentially exploi...
CVE-2014-2536
Directory traversal vulnerability in McAfee Cloud Identity Manager 3.0, 3.1, and 3.5.1, McAfee Cloud Single Sign On MCSSO before 4.0.1, and Intel Expressway Cloud Access 360-SSO 2.1 and 2.5 allows remote authenticated users to read an unspecified file containing a hash of the administrator passwo...
CVE-2014-2536
CVE-2014-2536 affects McAfee Cloud Identity Manager 3.0/3.1/3.5.1, McAfee Cloud Single Sign On (MCSSO) before 4.0.1, and Intel Expressway Cloud Access 360-SSO 2.1/2.5. The vulnerability is a directory traversal that allows remote authenticated users to read an unspecified file containing a hash o...
McAfee Cloud Single Sign On目录遍历漏洞
CVE ID: CVE-2014-2536 McAfee Cloud Single Sign On是一款基于云的单点登录解决方案。 McAfee Cloud Single Sign On不正确过滤用户提交的输入,允许远程攻击者利用漏洞提交特制的目录遍历请求,读取任意文件内容。 0 McAfee Cloud Single Sign On formerly McAfee Cloud Identity Manager 4.x McAfee Cloud Single Sign On 4.0.1已经修复该漏洞,建议用户下载更新:...