Computer Security
[EN] securityvulns.ru no-pyccku


McAfee ePolicy Orchestrator ActiveX multiple buffer overflows
Published:14.03.2007
Source:
SecurityVulns ID:7406
Type:client
Threat Level:
5/10
Description:Buffer overflows in SiteManager.Dll ExportSiteList() and VerifyPackageCatalog() functions.
Affected:MCAFEE : ePolicy Orchestrator 3.5
 MCAFEE : ePolicy Orchestrator 3.6
CVE:CVE-2007-1498 (Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ActiveX control (SiteManager.dll) in the ePO management console in McAfee ePolicy Orchestrator (ePO) before 3.6.1 Patch 1 and ProtectionPilot (PRP) before 1.5.0 HotFix allow remote attackers to execute arbitrary code via a long argument to the (1) ExportSiteList and (2) VerifyPackageCatalog functions, and (3) unspecified vectors involving a swprintf function call.)
Original documentdocumenthfli, [Full-disclosure] [Advisory]McAfee ePolicy Orchestrator Multiple Remote Buffer Overflow Vulnerabilities (14.03.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod