Computer Security

McAfee ePolicy Orchestrator ActiveX multiple buffer overflows
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



McAfee ePolicy Orchestrator ActiveX multiple buffer overflows
Published:14.03.2007
Source:FULL-DISCLOSURE
SecurityVulns ID:7406
Type:client
Level:5/10
Description:Buffer overflows in SiteManager.Dll ExportSiteList() and VerifyPackageCatalog() functions.
Affected:MCAFEE : ePolicy Orchestrator 3.5
 MCAFEE : ePolicy Orchestrator 3.6
CVE:CVE-2007-1498 (Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ActiveX control (SiteManager.dll) in the ePO management console in McAfee ePolicy Orchestrator (ePO) before 3.6.1 Patch 1 and ProtectionPilot (PRP) before 1.5.0 HotFix allow remote attackers to execute arbitrary code via a long argument to the (1) ExportSiteList and (2) VerifyPackageCatalog functions, and (3) unspecified vectors involving a swprintf function call.)
Original documentdocumenthfli, [Full-disclosure] [Advisory]McAfee ePolicy Orchestrator Multiple Remote Buffer Overflow Vulnerabilities (14.03.2007)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru