RSS   Vulnerabilities for 'Endpoint antivirus'   RSS

2017-03-02
 
CVE-2016-9892

 

 
The esets_daemon service in ESET Endpoint Antivirus for macOS before 6.4.168.0 and Endpoint Security for macOS before 6.4.168.0 does not properly verify X.509 certificates from the edf.eset.com SSL server, which allows man-in-the-middle attackers to spoof this server and provide crafted responses to license activation requests via a self-signed certificate. NOTE: this issue can be combined with CVE-2016-0718 to execute arbitrary code remotely as root.

 

 >>> Vendor: ESET 12 Products
Nod32 antivirus
Smart security
Remote administrator
Endpoint security
Firewall module build 1183
Personal firewall ndis filter
Nod32
Endpoint antivirus
Compusec
Deslock+ pro
Internet security
Smart security premium


Copyright 2019, cxsecurity.com

 

Back to Top