Application Control Security Vulnerabilities and Issues — Application Control CVE List

McafeeApplication Control

7 matches found

CVE•added 2017/03/14 10:0 p.m.•80 views

CVE-2016-8010

CVE-2016-8010 affects McAfee Application Control (MAC) v7.0 and earlier and McAfee Endpoint Security (ENS) v10.2 and earlier. Description: a vulnerability allows a local attacker to bypass local security protections via a command‑line utility. The connected documents confirm affected products and...

7.8CVSS7.3AI score0.00274EPSS

CVE•added 2016/01/12 8:0 p.m.•65 views

CVE-2016-1715

CVE-2016-1715 affects the McAfee Application Control (MAC) kernel driver swin.sys on 32‑bit Windows. The issue is a memory corruption condition triggered by handling a 768 syscall, where a zero can be written to an arbitrary kernel memory location. This enables local attackers to cause a denial o...

6.6CVSS6.6AI score0.02314EPSS

CVE•added 2017/03/14 10:0 p.m.•58 views

CVE-2016-8009

CVE-2016-8009 affects Intel Security McAfee Application Control (MAC) 6.x and 7.0.x. The root cause is unauthorized IOCTL usage that enables local privilege escalation, which can lead to DoS, abnormal behavior, or potentially arbitrary code execution. Public sources describe affected versions (MA...

7.8CVSS7.9AI score0.00409EPSS

CVE•added 2017/03/14 10:0 p.m.•56 views

CVE-2014-9920

CVE-2014-9920 affects McAfee Application Control (MAC) 6.x before specific hotfixes (9726 for 6.0.0, 9068 for 6.0.1, 692 for 6.1.0, 399 for 6.1.1, 426 for 6.1.2, 357 for 6.1.3 and earlier). A malformed Windows binary can be created that is treated as non-executable and bypasses the whitelisting p...

5.9CVSS5.7AI score0.01029EPSS

CVE•added 2012/08/22 10:0 a.m.•53 views

CVE-2012-4593

McAfee Application Control and Change Control 5.1.x and 6.0.0 are affected by an authentication bypass vulnerability. The issue arises because the product does not enforce an intended password requirement in certain situations involving attributes of the password file, allowing local users to byp...

5CVSS6.8AI score0.00988EPSS

CVE•added 2017/03/14 10:0 p.m.•45 views

CVE-2013-7461

CVE-2013-7461 concerns a write protection and execution bypass in McAfee Change Control (MCC) for Linux, affecting MCC 6.1.0 and earlier. The issue allows authenticated users to modify files that are protected by write-protection rules under specific conditions, causing partial integrity impact. ...

5.5CVSS5.5AI score0.00362EPSS

CVE•added 2017/03/14 10:0 p.m.•43 views

CVE-2013-7460

CVE-2013-7460 is a vulnerability in McAfee Application Control (MAC) 6.1.0 for Linux and earlier that enables write protection and an execution bypass. Authenticated users can change binaries that are part of the Application Control whitelist and allow execution of binaries under specific conditi...

5.5CVSS5.5AI score0.00362EPSS