Lucene search
K

19 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 12:18 p.m.10 views

CVE-2012-5879

An ActiveX control in McHealthCheck.dll in McAfee Virtual Technician MVT and ePO-MVT 6.5.0.2101 and earlier allows remote attackers to modify or create arbitrary files via a full pathname argument to the Save method...

8.2CVSS7AI score0.05196EPSS
Exploits5References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:38 a.m.10 views

CVE-2012-4598

An unspecified ActiveX control in McAfee Virtual Technician MVT before 6.4, and ePO-MVT, allows remote attackers to execute arbitrary code or cause a denial of service Internet Explorer crash via a crafted web site...

9.3CVSS8.1AI score0.29384EPSS
Exploits1References1
seebug.org
seebug.org
added 2013/03/29 12:0 a.m.48 views

McAfee Virtual Technician ActiveX 控件'Save()'方法文件覆盖漏洞

BUGTRAQ ID: 58750 CVECAN ID: CVE-2012-5879 McAfee Virtual Technician是分析诊断工具。 McAfee Virtual Technician 6.5.0.2101及其他版本的ActiveX控件存在安全漏洞可导致攻击者覆盖或创建受影响应用上下文内的任意文件。该安全漏洞存在于"McHealthCheck.dll"的"Save"方法。 0 McAfee Virtual Technician 6.5.0.2101 厂商补丁: McAfee ------ 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...

8.2CVSS0.05196EPSS
Exploits5
Prion
Prion
added 2013/03/28 11:55 p.m.18 views

Design/Logic Flaw

An ActiveX control in McHealthCheck.dll in McAfee Virtual Technician MVT and ePO-MVT 6.5.0.2101 and earlier allows remote attackers to modify or create arbitrary files via a full pathname argument to the Save method...

8.2CVSS7.1AI score0.05196EPSS
Exploits5References6Affected Software2
CVE
CVE
added 2013/03/28 11:0 p.m.143 views

CVE-2012-5879

Summary: CVE-2012-5879 affects McAfee Virtual Technician (MVT) and ePO-MVT prior to remediation, via the ActiveX control in McHealthCheck.dll. The insecure Save() method on McHealthCheck.dll can cause remote attackers to modify or create arbitrary files using a full pathname argument, potentially...

8.2CVSS6.7AI score0.05196EPSS
Exploits5References6Affected Software1
Cvelist
Cvelist
added 2013/03/28 11:0 p.m.34 views

CVE-2012-5879

An ActiveX control in McHealthCheck.dll in McAfee Virtual Technician MVT and ePO-MVT 6.5.0.2101 and earlier allows remote attackers to modify or create arbitrary files via a full pathname argument to the Save method...

6.6AI score0.05196EPSS
Exploits5References6
Check Point Advisories
Check Point Advisories
added 2012/09/23 12:0 a.m.13 views

McAfee Virtual Technician ActiveX Control Insecure Method Code Execution (CVE-2012-4598)

A remote code execution vulnerability has been reported in McAfee Virtual Technician. The vulnerability is due to a design weakness in a certain method, which allows instantiation of an arbitrary object on the vulnerable system. A remote attacker can exploit this vulnerability by enticing a targe...

9.3CVSS7.6AI score0.29384EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2012/08/29 12:0 a.m.42 views

McAfee Virtual Technician ActiveX Control GetObject() Method Remote Command Execution (SB10028)

The remote Windows host has a version of the McAfee Virtual Technician / ePolicy Orchestrator ActiveX control that allows execution of arbitrary code. The 'GetObject' method can be used to load any class on the underlying operating system. For example, by loading the 'WScript.Shell' class,...

9.3CVSS6.1AI score0.29384EPSS
Exploits1References2
Prion
Prion
added 2012/08/22 10:42 a.m.17 views

Code injection

An unspecified ActiveX control in McAfee Virtual Technician MVT before 6.4, and ePO-MVT, allows remote attackers to execute arbitrary code or cause a denial of service Internet Explorer crash via a crafted web site...

9.3CVSS8.3AI score0.29384EPSS
Exploits1References1Affected Software2
Saint
Saint
added 2012/05/04 12:0 a.m.28 views

McAfee Virtual Technician MVT.MVTControl ActiveX Control Insecure Method

Added: 05/04/2012 BID: 53304 Background McAfee Virtual Technician is a free automated diagnosis and and problem resolution tool which scans a Windows system to ensure that McAfee products are installed correctly. Problem McAfee Virtual Technician ActiveX control MVT.dll, as provided in McAfee...

0.6AI score
Exploits0
Saint
Saint
added 2012/05/04 12:0 a.m.23 views

McAfee Virtual Technician MVT.MVTControl ActiveX Control Insecure Method

Added: 05/04/2012 BID: 53304 Background McAfee Virtual Technician is a free automated diagnosis and and problem resolution tool which scans a Windows system to ensure that McAfee products are installed correctly. Problem McAfee Virtual Technician ActiveX control MVT.dll, as provided in McAfee...

8AI score
Exploits0
Saint
Saint
added 2012/05/04 12:0 a.m.24 views

McAfee Virtual Technician MVT.MVTControl ActiveX Control Insecure Method

Added: 05/04/2012 BID: 53304 Background McAfee Virtual Technician is a free automated diagnosis and and problem resolution tool which scans a Windows system to ensure that McAfee products are installed correctly. Problem McAfee Virtual Technician ActiveX control MVT.dll, as provided in McAfee...

8AI score
Exploits0
Packet Storm
Packet Storm
added 2012/05/03 12:0 a.m.18 views

McAfee Virtual Technician MVTControl 6.3.0.1911 GetObject Vulnerability

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "McAfee Virtual...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2012/05/01 12:0 a.m.100 views

McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 ActiveX Control GetObject() Security Bypass Remote Code Execution Vulnerability

McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 ActiveX Control GetObject Security Bypass Remote Code Execution Vulnerability tested against: Microsoft Windows Vista sp2 Microsoft Windows 2003 r2 sp2 Internet Explorer 7/8/9 product homepage:...

1.4AI score
Exploits0
0day.today
0day.today
added 2012/05/01 12:0 a.m.20 views

McAfee Virtual Technician MVTControl 6.3.0.1911 GetObject Vulnerability

Exploit for windows platform in category remote exploits This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework...

7.1AI score
Exploits0
Metasploit
Metasploit
added 2012/04/30 9:23 p.m.26 views

McAfee Virtual Technician MVTControl 6.3.0.1911 GetObject Vulnerability

This module exploits a vulnerability found in McAfee Virtual Technician's MVTControl. This ActiveX control can be abused by using the GetObject function to load additional unsafe classes such as WScript.Shell, therefore allowing remote code execution under the context of the user. This module...

9.3CVSS7.8AI score0.29384EPSS
Exploits1
0day.today
0day.today
added 2012/04/30 12:0 a.m.17 views

McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 Code Execution

Exploit for windows platform in category remote exploits McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 ActiveX Control GetObject Security Bypass Remote Code Execution Vulnerability tested against: Microsoft Windows Vista sp2 Microsoft Windows 2003 r2 sp2 Internet Explorer 7/8/9 product...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2012/04/30 12:0 a.m.25 views

McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 - ActiveX GetObject() Code Execution

McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 - ActiveX GetObject Code Execution McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 ActiveX Control GetObject Security Bypass Remote Code Execution Vulnerability tested against: Microsoft Windows Vista sp2 Microsoft Windows 2003 r2...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2012/04/30 12:0 a.m.36 views

McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 - ActiveX 'GetObject()' Code Execution

McAfee Virtual Technician 6.3.0.1911 MVT.MVTControl.6300 ActiveX Control GetObject Security Bypass Remote Code Execution Vulnerability tested against: Microsoft Windows Vista sp2 Microsoft Windows 2003 r2 sp2 Internet Explorer 7/8/9 product homepage:...

7AI score
Exploits0
Rows per page
Query Builder