Lucene search

K
McafeeVirusscan Enterprise*

19 matches found

CVE
CVE
added 2017/03/14 10:59 p.m.65 views

CVE-2016-8024

Improper neutralization of CRLF sequences in HTTP headers vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote unauthenticated attacker to obtain sensitive information via the server HTTP response spoofing.

8.1CVSS7.4AI score0.09215EPSS
CVE
CVE
added 2017/03/14 10:59 p.m.62 views

CVE-2016-8025

SQL injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote authenticated users to obtain product information via a crafted HTTP request parameter.

6.2CVSS6AI score0.0185EPSS
CVE
CVE
added 2017/03/14 10:59 p.m.60 views

CVE-2016-8021

Improper verification of cryptographic signature vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote authenticated users to spoof update server and execute arbitrary code via a crafted input file.

5CVSS5.9AI score0.02847EPSS
CVE
CVE
added 2017/03/14 10:59 p.m.59 views

CVE-2016-8016

Information exposure in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers to obtain the existence of unauthorized files on the system via a URL parameter.

3.5CVSS4.7AI score0.09829EPSS
CVE
CVE
added 2017/03/14 10:59 p.m.54 views

CVE-2016-8019

Cross-site scripting (XSS) vulnerability in attributes in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows unauthenticated remote attackers to inject arbitrary web script or HTML via a crafted user input.

6.1CVSS5.8AI score0.01334EPSS
CVE
CVE
added 2017/03/14 10:59 p.m.51 views

CVE-2016-8023

Authentication bypass by assumed-immutable data vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote unauthenticated attacker to bypass server authentication via a crafted authentication cookie.

8.1CVSS7.6AI score0.11326EPSS
CVE
CVE
added 2020/05/08 12:15 p.m.51 views

CVE-2020-7266

Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Windows prior to 8.8 Patch 14 Hotfix 116778 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is ac...

8.8CVSS8.2AI score0.00035EPSS
CVE
CVE
added 2015/12/16 6:59 p.m.48 views

CVE-2015-8577

The Buffer Overflow Protection (BOP) feature in McAfee VirusScan Enterprise before 8.8 Patch 6 allocates memory with Read, Write, Execute (RWX) permissions at predictable addresses on 32-bit platforms when protecting another application, which allows attackers to bypass the DEP and ASLR protection ...

2.6CVSS6.7AI score0.00021EPSS
CVE
CVE
added 2017/03/14 10:59 p.m.48 views

CVE-2016-8017

Special element injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers to read files on the webserver via a crafted user input.

4.1CVSS4.7AI score0.14314EPSS
CVE
CVE
added 2017/03/14 10:59 p.m.48 views

CVE-2016-8018

Cross-site request forgery (CSRF) vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers to execute unauthorized commands via a crafted user input.

6CVSS5AI score0.00434EPSS
CVE
CVE
added 2017/03/14 10:59 p.m.48 views

CVE-2016-8020

Improper control of generation of code vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote authenticated users to execute arbitrary code via a crafted HTTP request parameter.

8CVSS7.5AI score0.02922EPSS
CVE
CVE
added 2020/12/09 9:15 a.m.48 views

CVE-2020-7337

Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise (VSE) prior to 8.8 Patch 16 allows local administrators to bypass local security protection through VSE not correctly integrating with Windows Defender Application Control via careful manipulation of ...

6.7CVSS6.6AI score0.00032EPSS
CVE
CVE
added 2016/04/08 3:59 p.m.47 views

CVE-2016-3984

The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) before 1.1.0.161, Agent (MA) 5.x before 5.0.2 Hotfix 1110392 (5.0.2.333), Data Exchange Layer 2.x (DXL) before 2.0.1.140.1, Data Loss Prevention Endpoint (DLPe) 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Device Control ...

5.1CVSS5AI score0.0029EPSS
CVE
CVE
added 2017/03/14 10:59 p.m.47 views

CVE-2016-8022

Authentication bypass by spoofing vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote unauthenticated attacker to execute arbitrary code or cause a denial of service via a crafted authentication cookie.

7.5CVSS8AI score0.08579EPSS
CVE
CVE
added 2012/08/22 10:42 a.m.46 views

CVE-2009-5118

Untrusted search path vulnerability in McAfee VirusScan Enterprise before 8.7i allows local users to gain privileges via a Trojan horse DLL in an unspecified directory, as demonstrated by scanning a document located on a remote share.

9.3CVSS6.8AI score0.00724EPSS
CVE
CVE
added 2009/04/30 8:30 p.m.42 views

CVE-2009-1348

The AV engine before DAT 5600 in McAfee VirusScan, Total Protection, Internet Security, SecurityShield for Microsoft ISA Server, Security for Microsoft Sharepoint, Security for Email Servers, Email Gateway, and Active Virus Defense allows remote attackers to bypass virus detection via (1) an invali...

7.6CVSS6.7AI score0.00449EPSS
CVE
CVE
added 2012/08/22 10:42 a.m.42 views

CVE-2010-5143

McAfee VirusScan Enterprise before 8.8 allows local users to disable the product by leveraging administrative privileges to execute an unspecified Metasploit Framework module.

2.6CVSS6.8AI score0.00049EPSS
CVE
CVE
added 2017/04/25 4:59 p.m.42 views

CVE-2016-8030

A memory corruption vulnerability in Scriptscan COM Object in McAfee VirusScan Enterprise 8.8 Patch 8 and earlier allows remote attackers to create a Denial of Service on the active Internet Explorer tab via a crafted HTML link.

4.3CVSS4.7AI score0.0036EPSS
CVE
CVE
added 2007/04/19 10:19 a.m.37 views

CVE-2007-2152

Buffer overflow in the On-Access Scanner in McAfee VirusScan Enterprise before 8.0i Patch 12 allows user-assisted remote attackers to execute arbitrary code via a long filename containing multi-byte (Unicode) characters.

7.9CVSS7.8AI score0.25578EPSS