CVE-2018-6660
CVE-2018-6660 is a directory-traversal vulnerability in McAfee ePolicy Orchestrator (ePO) versions 5.3.0, 5.3.1, 5.3.2 and 5.9.0. The root cause is improper validation of paths when exporting a particular XML file, enabling use of Windows alternate data streams to bypass file extensions. The vuln...