CVE-2006-5273
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
95.3%
Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 through 3.6.0.453 allows remote attackers to execute arbitrary code via a crafted packet.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mcafee | common_management_agent | * | cpe:2.3:a:mcafee:common_management_agent:*:*:*:*:*:*:*:* |
| mcafee | common_management_agent | 3.6.0.438 | cpe:2.3:a:mcafee:common_management_agent:3.6.0.438:*:*:*:*:*:*:* |
| mcafee | e-business_server | 3.5 | cpe:2.3:a:mcafee:e-business_server:3.5:*:*:*:*:*:*:* |
| mcafee | e-business_server | 3.6.1 | cpe:2.3:a:mcafee:e-business_server:3.6.1:*:*:*:*:*:*:* |
| mcafee | protectionpilot | 1.1.1 | cpe:2.3:a:mcafee:protectionpilot:1.1.1:*:*:*:*:*:*:* |
| mcafee | protectionpilot | 1.1.1 | cpe:2.3:a:mcafee:protectionpilot:1.1.1:p3:*:*:*:*:*:* |
| mcafee | protectionpilot | 1.5.0 | cpe:2.3:a:mcafee:protectionpilot:1.5.0:*:*:*:*:*:*:* |
References
secunia.com/advisories/26029
www.iss.net/threats/269.html
www.nessus.org/plugins/index.php?view=single&id=25702
www.osvdb.org/36100
www.securityfocus.com/bid/24863
www.securitytracker.com/id?1018363
www.vupen.com/english/advisories/2007/2498
exchange.xforce.ibmcloud.com/vulnerabilities/31164
knowledge.mcafee.com/article/763/613366_f.SAL_Public.html
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
95.3%