McAfee Common Management Agent (CMA)多个内存破坏漏洞

2007-07-13T00:00:00
ID SSV:2003
Type seebug
Reporter Root
Modified 2007-07-13T00:00:00

Description

McAfee Common Management Agent是一款安全管理客户端工具,帮助简化网管的防病毒管理任务。

McAfee Common Management Agent存在多个内存破坏问题,远程攻击者可以利用漏洞以系统进程权限执行任意指令。

漏洞包括如下:

-不正确的边界检查可引起整数下溢,攻击者可以利用漏洞在系统上执行任意代码。 -发送特殊构建的报文会由于不正确的边界检查而造成基于堆栈的缓冲区溢出。 -发送特殊构建的报文会由于不正确的边界检查而造成基于堆的溢出,可导致任意代码执行。 -不正确的边界检查可引起整数溢出,攻击者可以利用漏洞在系统上执行任意代码。 0 McAfee ProtectionPilot 1.5 McAfee ProtectionPilot 1.1.1 McAfee ePolicy Orchestrator 3.6.1 McAfee ePolicy Orchestrator 3.6 McAfee ePolicy Orchestrator 3.5 McAfee Common Management Agent (CMA) 3.6.438 McAfee Common Management Agent (CMA) 3.6 .453 McAfee Common Management Agent (CMA) 3.5.5 .438 McAfee Common Management Agent (CMA) 3.0.6 .453 升级程序:

McAfee Common Management Agent (CMA) 3.0.6 .453

* McAfee Common Management Agent 3.6.0 Patch 1 (CMA3.6.0.546)
  <a href="https://mysupport.mcafee.com/eservice_enu/start.swe" target="_blank">https://mysupport.mcafee.com/eservice_enu/start.swe</a>

McAfee Common Management Agent (CMA) 3.5.5 .438

* McAfee Common Management Agent 3.6.0 Patch 1 (CMA3.6.0.546)
  <a href="https://mysupport.mcafee.com/eservice_enu/start.swe" target="_blank">https://mysupport.mcafee.com/eservice_enu/start.swe</a>

McAfee Common Management Agent (CMA) 3.6 .453

* McAfee Common Management Agent 3.6.0 Patch 1 (CMA3.6.0.546)
  <a href="https://mysupport.mcafee.com/eservice_enu/start.swe" target="_blank">https://mysupport.mcafee.com/eservice_enu/start.swe</a>

McAfee Common Management Agent (CMA) 3.6.438

* McAfee Common Management Agent 3.6.0 Patch 1 (CMA3.6.0.546)
  <a href="https://mysupport.mcafee.com/eservice_enu/start.swe" target="_blank">https://mysupport.mcafee.com/eservice_enu/start.swe</a>