5 matches found
CVE-2006-5272
The CVE-2006-5272 issue affects McAfee CMA (Common Management Agent) prior to 3.6.0.546. A stack-based buffer overflow in the CMA component occurs when handling certain ping packets received over the network, enabling a remote attacker to potentially execute arbitrary code. Affected versions incl...
CVE-2006-5273
The CVE-2006-5273 entry describes a heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5–3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438–3.6.0.453. The vulnerability allows remote attackers to execute arbitrary code via a crafted packet. Connected docume...
CVE-2006-5274
CVE-2006-5274 corresponds to an integer overflow in McAfee ePolicy Orchestrator / CMA components (3.5–3.6.1, CMA 3.5.5.438, ProtectionPilot) enabling remote DoS and possible code execution via unspecified vectors. Connected documents also reference CVE-2008-1855, showing CMA 3.6.0.574 Patch 3 and...
CVE-2005-4505
CVE-2005-4505 describes an unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5). The underlying issue is an unquoted Program Files path that causes naPrdMgr.exe to execute EntVUtil.EXE, enabling local users to gain privileges via a malici...
CVE-2009-5115
CVE-2009-5115 affects McAfee CMA 3.5.5 (3.5.5.588) and 3.6.0 (3.6.0.608), and McAfee Agent 4.0 prior to Patch 3. An authenticated remote attacker could overwrite arbitrary files by accessing a report-writing ActiveX control COM object. Remediation: apply Patch 3 for McAfee Agent 4.0 (and correspo...