4 matches found
CVE-2011-3007
The myCIOScn ActiveX control myCIOScn.dll in McAfee SaaS Endpoint Protection 5.2.1 and earlier allows remote attackers to write to arbitrary files by specifying an arbitrary filename in the MyCioScan.Scan.ReportFile parameter, as demonstrated by injecting script into a log file and executing...
CVE-2011-3007
The myCIOScn ActiveX control myCIOScn.dll in McAfee SaaS Endpoint Protection 5.2.1 and earlier allows remote attackers to write to arbitrary files by specifying an arbitrary filename in the MyCioScan.Scan.ReportFile parameter, as demonstrated by injecting script into a log file and executing...
CVE-2011-3007
CVE-2011-3007 affects McAfee SaaS Endpoint Protection (ActiveX control myCIOScn.dll) versions 5.2.1 and earlier. The vulnerability arises in the MyCioScan.Scan.ReportFile parameter, which allows remote attackers to specify an arbitrary filename, enabling writing to arbitrary files. Documented imp...
CVE-2011-3007
The myCIOScn ActiveX control myCIOScn.dll in McAfee SaaS Endpoint Protection 5.2.1 and earlier allows remote attackers to write to arbitrary files by specifying an arbitrary filename in the MyCioScan.Scan.ReportFile parameter, as demonstrated by injecting script into a log file and executing...