Epolicy Orchestrator Security Vulnerabilities and Issues — Epolicy Orchestrator CVE List

Lucene search

McafeeEpolicy Orchestrator

5 matches found

CVE•added 2003/08/27 4:0 a.m.•52 views

CVE-2003-0148

The default installation of MSDE via McAfee ePolicy Orchestrator 2.0 through 3.0 allows attackers to execute arbitrary code via a series of steps that (1) obtain the database administrator username and encrypted password in a configuration file from the ePO server using a certain request, (2) crack...

7.2CVSS7.7AI score0.00011EPSS

CVE•added 2003/04/11 4:0 a.m.•45 views

CVE-2002-0690

Format string vulnerability in McAfee Security ePolicy Orchestrator (ePO) 2.5.1 allows remote attackers to execute arbitrary code via an HTTP GET request with a URI containing format strings.

10CVSS7.6AI score0.17822EPSS

CVE•added 2003/08/27 4:0 a.m.•45 views

CVE-2003-0149

Heap-based buffer overflow in ePO agent for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code via a POST request containing long parameters.

7.5CVSS8.1AI score0.01023EPSS

CVE•added 2003/08/27 4:0 a.m.•45 views

CVE-2003-0610

Directory traversal vulnerability in ePO agent for McAfee ePolicy Orchestrator 3.0 allows remote attackers to read arbitrary files via a certain HTTP request.

5CVSS7.1AI score0.00863EPSS

CVE•added 2003/08/27 4:0 a.m.•42 views

CVE-2003-0616

Format string vulnerability in ePO service for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code via a POST request with format strings in the computerlist parameter, which are used when logging a failed name resolution.

7.5CVSS7.7AI score0.01965EPSS