Lucene search
K

84 matches found

Tenable Nessus
Tenable Nessus
added 2012/12/03 12:0 a.m.32 views

McAfee WebShield SMTP Unsupported

The install of McAfee WebShield SMTP listening on the remote host is no longer supported since the product reached End of Life on March 31, 2010. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security...

5.6AI score
Exploits0References1
CVE
CVE
added 2012/09/25 10:0 a.m.46 views

CVE-2012-4014

CVE-2012-4014 affects McAfee Email Anti-virus (formerly WebShield SMTP). The vulnerability enables remote denial of service via unspecified vectors; impact is DoS as described by multiple sources. Public details are consistent across NVD, Red Hat, JVN entries, and CVE listings. Remediation is not...

7.8CVSS6.8AI score0.01895EPSS
Exploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2012/09/20 3:31 a.m.4 views

Email Anti-virus (formerly WebShield SMTP) vulnerable to denial-of-service

Overview Email Anti-virus formerly WebShield SMTP provided by McAfee Co., Ltd. contains a denial-of-service DoS vulnerability. Email Anti-virus formerly WebShield SMTP provided by McAfee Co., Ltd. is an anti-virus package that scans emails. Email Anti-virus formerly WebShield SMTP contains a...

7.8CVSS6.6AI score0.01895EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2012/05/16 12:0 a.m.33 views

McAfee WebShield UI Authentication Bypass (SB10026)

The version of the McAfee WebShield UI hosted on the remote web server is affected by an authentication bypass vulnerability. It is possible to get a valid session ID as the administrative user by making a specially crafted request to /cgi-bin/localadmin. A remote, unauthenticated attacker can...

7.5CVSS5.7AI score0.02525EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2012/05/16 12:0 a.m.33 views

McAfee WebShield UI mui Directory Traversal (SB10026)

The version of the McAfee WebShield UI hosted on the remote web server is affected by a directory traversal vulnerability. Input passed to the query string of /cgi-bin/mui is not properly sanitized. A remote, unauthenticated attacker can exploit this to read arbitrary files as the apache user...

4.3CVSS5.8AI score0.02588EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2012/05/16 12:0 a.m.28 views

McAfee WebShield UI Dashboard XSS (SB10026)

The version of the McAfee WebShield UI hosted on the remote web server is affected by a cross-site scripting vulnerability. Extra path information passed to the end of the 'dashboard' script is not properly sanitized. A remote attacker can exploit this by convincing a user into requesting a...

4.3CVSS5.5AI score0.01148EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2012/04/03 12:0 a.m.16 views

McAfee WebShield Web UI Detection

WebShield Web UI included with products such as McAfee Email Gateway and McAfee Email and Web Security was detected on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid58581; scriptversion"1.9"; scriptsetattributeattribute:"pluginmodificationdate",...

5.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/04/03 12:0 a.m.26 views

McAfee WebShield UI ProcessTextFile bodyStyle Parameter XSS (SB10020)

The version of WebShield UI hosted on the remote web server has a reflected cross-site scripting vulnerability. Input to the 'bodyStyle' parameter of ProcessTextFiles is not properly sanitized. A remote attacker could exploit this by tricking a user into requesting a maliciously crafted URL,...

4.3CVSS5.5AI score0.01384EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2011/03/04 3:47 p.m.11 views

Malware Piggybacks On Anti-Phishing Software

Malware authors have discovered a shortcut to create a Trojan horse program: using components from an anti-phishing product from China-based Zhuhai Kingsoft Software. Symantec researcher Poul Jensen wrote about the malware on that company’s Connect blog on Wednesday. The Trojan package...

1.4AI score
Exploits0References1
securityvulns
securityvulns
added 2010/05/27 12:0 a.m.26 views

Kingsoft WebShield KAVSafe.sys <= 2010.4.14.609(2010.5.23) Kernel Mode Local Privilege Escalation Vulnerability

Kingsoft WebShield KAVSafe.sys = 2010.4.14.6092010.5.23 Kernel Mode Local Privilege Escalation Vulnerability VULNERABLE PRODUCTS Kingsoft WebShield = 3.5.1.2 2010.5.23 Signature Date: 2010-5-23 2:33:54 And KAVSafe.sys = 2010.4.14.609 Signature Date2010-4-14 13:42:26 DETAILS: Kavsafe.sys create a...

0.3AI score
Exploits0
securityvulns
securityvulns
added 2010/05/27 12:0 a.m.22 views

Kingsoft WebShield privilege escalation

Kernel memory overwrite on IOCTL processing...

3.6AI score
Exploits0References1Affected Software1
Packet Storm
Packet Storm
added 2010/05/25 12:0 a.m.27 views

Kingsoft WebShield KAVSafe.sys Privilege Escalation

Kingsoft WebShield KAVSafe.sys = 2010.4.14.6092010.5.23 Kernel Mode Local Privilege Escalation Vulnerability VULNERABLE PRODUCTS Kingsoft WebShield = 3.5.1.2 2010.5.23 Signature Date: 2010-5-23 2:33:54 And KAVSafe.sys = 2010.4.14.609 Signature Date:2010-4-14 13:42:26 DETAILS: Kavsafe.sys create a...

0.8AI score
Exploits0
NVD
NVD
added 2010/05/24 7:30 p.m.18 views

CVE-2010-2031

KAVSafe.sys 2010.4.14.609 and earlier, as used in Kingsoft Webshield 3.5.1.2 and earlier, allows local users to overwrite arbitrary kernel memory via a crafted request to IOCTL 0x830020d4 on the KAVSafe device...

7.2CVSS6.2AI score0.00753EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2010/05/24 7:30 p.m.5 views

CVE-2010-2031

KAVSafe.sys 2010.4.14.609 and earlier, as used in Kingsoft Webshield 3.5.1.2 and earlier, allows local users to overwrite arbitrary kernel memory via a crafted request to IOCTL 0x830020d4 on the KAVSafe device...

7.2CVSS5.6AI score0.00753EPSS
Exploits1References5
CVE
CVE
added 2010/05/24 7:0 p.m.45 views

CVE-2010-2031

CVE-2010-2031 affects KAVSafe.sys 2010.4.14.609 and earlier (used with Kingsoft Webshield 3.5.1.2 and earlier). It allows local users to overwrite arbitrary kernel memory via a crafted IOCTL 0x830020d4 request to the KAVSafe device. The NVD entry documents a local-exploit scenario with a CVSSv2 b...

7.2CVSS6.4AI score0.00753EPSS
Exploits1References4Affected Software1
0day.today
0day.today
added 2010/05/23 12:0 a.m.16 views

Kingsoft WebShield KAVSafe.sys <= 2010.4.14.609(2010.5.23) Local Priv

Exploit for linux platform in category local exploits ============================================================================================= Kingsoft WebShield KAVSafe.sys = 2010.4.14.6092010.5.23 Kernel Mode Local Priv. Escalation...

6.8AI score
Exploits0
Exploit DB
Exploit DB
added 2010/05/23 12:0 a.m.35 views

Kingsoft Webshield &#039;KAVSafe.sys&#039; 2010.4.14.609 (2010.5.23) - Kernel Mode Privilege Escalation

/ Kingsoft WebShield KAVSafe.sys = 2010.4.14.6092010.5.23 Kernel Mode Local Privilege Escalation Vulnerability VULNERABLE PRODUCTS Kingsoft WebShield = 3.5.1.2 2010.5.23 Signature Date: 2010-5-23 2:33:54 And KAVSafe.sys = 2010.4.14.609 Signature Date2010-4-14 13:42:26 DETAILS: Kavsafe.sys create ...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/05/23 12:0 a.m.18 views

Kingsoft Webshield KAVSafe.sys 2010.4.14.609 (2010.5.23) - Kernel Mode Privilege Escalation

Kingsoft Webshield KAVSafe.sys 2010.4.14.609 2010.5.23 - Kernel Mode Privilege Escalation / Kingsoft WebShield KAVSafe.sys = 2010.4.14.6092010.5.23 Kernel Mode Local Privilege Escalation Vulnerability VULNERABLE PRODUCTS Kingsoft WebShield = 3.5.1.2 2010.5.23 Signature Date: 2010-5-23 2:33:54 And...

1.2AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2010/02/21 12:0 a.m.15 views

McAfee WebShield SMTP Bounce Message Format String (CVE-2006-0559)

McAfee WebShield SMTP is an application designed to scan incoming SMTP messages for viruses before forwarding them to their destinations. Since WebShield may be set up to work independently of any real SMTP servers, it can act as a partially-featured SMTP server on its own, with respect to...

10CVSS7.6AI score0.06075EPSS
Exploits0
exploitpack
exploitpack
added 2009/05/20 12:0 a.m.9 views

Kingsoft Webshield 1.1.0.62 - Cross-Site Scripting Remote Command Execution

Kingsoft Webshield 1.1.0.62 - Cross-Site Scripting Remote Command Execution source: https://www.securityfocus.com/bid/35038/info The Webshield feature of Kingsoft Internet Security 9 is prone to a remote cross-site scripting and command-execution vulnerability. Remote attackers may exploit this...

0.5AI score
Exploits0
Rows per page
Query Builder