3 matches found
Integer overflow
Integer signedness error in the AV engine before DAT 8145, as used in McAfee LiveSafe 14.0, allows remote attackers to cause a denial of service memory corruption and crash via a crafted packed executable...
CVE-2016-4535
CVE-2016-4535 describes an integer signedness error in the McAfee LiveSafe AV engine prior to DAT 8145 (14.0). The flaw allows remote attackers to trigger memory corruption and a denial of service by processing a crafted packed executable, potentially crashing mscan64a.dll on Windows. Public refe...
McAfee LiveSafe 14.0 - Relocations Processing Memory Corruption
Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=817 Fuzzing packed executables with McAfee's LiveSafe 14.0 on Windows found a signedness error parsing sections and relocations. The attached fuzzed testcase demonstrates this and...