Vulnerability CVE-2013-7460


Published: 2017-03-14   Modified: 2017-03-15

Description:
A write protection and execution bypass vulnerability in McAfee (now Intel Security) Application Control (MAC) 6.1.0 for Linux and earlier allows authenticated users to change binaries that are part of the Application Control whitelist and allows execution of binaries via specific conditions.

CVSS2 => (AV:L/AC:L/Au:N/C:N/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
2.1/10
2.9/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
None
Affected software
Mcafee -> Application control 
Mcafee -> Change control 

 References:
https://kc.mcafee.com/corporate/index?page=content&id=SB10054

Copyright 2021, cxsecurity.com

 

Back to Top