RSS   Vulnerabilities for 'Mcafee agent'   RSS

2021-01-18
 
CVE-2020-7343

CWE-862
 

 
Missing Authorization vulnerability in McAfee Agent (MA) for Windows prior to 5.7.1 allows local users to block McAfee product updates by manipulating a directory used by MA for temporary files. The product would continue to function with out-of-date detection files.

 
2020-09-10
 
CVE-2020-7315

CWE-426
 

 
DLL Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to execute arbitrary code via careful placement of a malicious DLL.

 
 
CVE-2020-7314

CWE-732
 

 
Privilege Escalation Vulnerability in the installer in McAfee Data Exchange Layer (DXL) Client for Mac shipped with McAfee Agent (MA) for Mac prior to MA 5.6.6 allows local users to run commands as root via incorrectly applied permissions on temporary files.

 
 
CVE-2020-7312

CWE-427
 

 
DLL Search Order Hijacking Vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder.

 
 
CVE-2020-7311

CWE-269
 

 
Privilege Escalation vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to assume SYSTEM rights during the installation of MA via manipulation of log files.

 
2017-02-13
 
CVE-2017-3896

 

 
Unvalidated parameter vulnerability in the remote log viewing capability in Intel Security McAfee Agent 5.0.x versions prior to 5.0.4.449 allows remote attackers to pass unexpected input parameters via a URL that was not completely validated.

 
2015-09-18
 
CVE-2015-7237

 

 
Directory traversal vulnerability in the remote log viewing functionality in McAfee Agent (MA) 5.x before 5.0.2 allows remote attackers to obtain sensitive information via unspecified vectors.

 
2015-02-23
 
CVE-2015-2053

 

 
The log viewer in McAfee Agent (MA) before 4.8.0 Patch 3 and 5.0.0, when the "Accept connections only from the ePO server" option is disabled, allows remote attackers to conduct clickjacking attacks via a crafted web page, aka an "http-generic-click-jacking" vulnerability.

 

 >>> Vendor: Mcafee 134 Products
Virusscan
Remote desktop 32
Asap virusscan
Webshield smtp
Epolicy orchestrator
Entercept agent
Antivirus engine
Freescan
Security installer control system
Internet security suite
Intrushield security management system
Mcinsctl.dll
Virusscan security center
Common management agent
Virusscan enterprise
Virex
Epolicy orchestrator agent
Antispyware
Personal firewall plus
Privacy service
Quickclean
Security center
Spamkiller
Wireless home network security
Scan engine
Protectionpilot
E-business server
Network agent
Neotrace
Visual trace
Securitycenter agent
Agent
CMA
Mcafee framework
Encrypted usb manager
Safeboot device encryption
Active virus defense
Active virusscan
Email gateway
Securityshield for email servers
Securityshield for microsoft isa server
Securityshield for microsoft sharepoint
Total protection
Total protection for endpoint
Virusscan commandline
Virusscan plus
Virusscan usb
Groupshield
Smartfilter
Email and web security appliance
Intrushield network security manager
Secure mail
Unified threat management firewall firmware
Saas endpoint protection
Gateway
Web gateway
Linuxshield
Host data loss prevention
Firewall reporter
Email and web security
Enterprise mobility manager
Enterprise mobility manager agent
Application control
Change control
Mcafee virtual technician
Epo mcafee virtual technician
Total protection 2010
Vulnerability manager
Superscan
Cloud identity manager
Cloud single sign on
Asset manager
Network security manager
Network data loss prevention
Endpoint encryption for files and folders
Mcafee file and removable media protection
File and removable media protection
Data loss prevention endpoint
Mcafee agent
Advanced threat defense
Epo deep command
Threat intelligence exchange
Enterprise security manager
Enterprise security manager/log manager
Enterprise security manager/receiver
Mcafee enterprise security manager
File lock
Livesafe
Active response
Data exchange layer
Endpoint security
Host intrusion prevention
Smartfilter administration
Security information and event management
Security scan plus
Host intrusion prevention services
Cloud analysis and deconstructive services
Security webadvisor
Cloud av
Saas control console platform
See all Products for Vendor Mcafee


Copyright 2021, cxsecurity.com

 

Back to Top