Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee epolicy orchestrator vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5272
Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and previous versions allows remote malicious users to execute arbitrary code via a crafted ping packet.
Mcafee Protectionpilot 1.1.1
Mcafee Common Management Agent
Mcafee Protectionpilot 1.5.0
Mcafee E-business Server 3.5
Mcafee E-business Server 3.6.1
NA
CVE-2006-5273
Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 up to and including 3.6.0.453 allows remote malicious users to execute arbitrary code via a crafted packet.
Mcafee Protectionpilot 1.1.1
Mcafee Protectionpilot 1.5.0
Mcafee Common Management Agent
Mcafee Common Management Agent 3.6.0.438
Mcafee E-business Server 3.5
Mcafee E-business Server 3.6.1
NA
CVE-2006-5274
Integer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 allows remote malicious users to cause a denial of service (CMA Framework service crash) and possibly execute arbitrary code v...
Mcafee Common Management Agent 3.6.0.438
Mcafee Protectionpilot 1.5.0
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Protectionpilot 1.1.1
NA
CVE-2007-1498
Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ActiveX control (SiteManager.dll) in the ePO management console in McAfee ePolicy Orchestrator (ePO) prior to 3.6.1 Patch 1 and ProtectionPilot (PRP) prior to 1.5.0 HotFix allow remote malicious users to execute a...
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Protectionpilot 1.1.1
Mcafee Protectionpilot 1.5.0
NA
CVE-2006-5156
Buffer overflow in McAfee ePolicy Orchestrator prior to 3.5.0.720 and ProtectionPilot prior to 1.1.1.126 allows remote malicious users to execute arbitrary code via a request to /spipe/pkg/ with a long source header.
Mcafee Protectionpilot 1.1.1
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 3.5.0
2 EDB exploits
NA
CVE-2006-3623
Directory traversal vulnerability in Framework Service component in McAfee ePolicy Orchestrator agent 3.5.0.x and previous versions allows remote malicious users to create arbitrary files via a .. (dot dot) in the directory and filename in a PropsResponse (PackageType) request.
Mcafee Epolicy Orchestrator Agent
NA
CVE-2004-0038
McAfee ePolicy Orchestrator (ePO) 2.5.1 Patch 13 and 3.0 SP2a Patch 3 allows remote malicious users to execute arbitrary commands via certain HTTP POST requests to the spipe/file handler on ePO TCP port 81.
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 3.0
NA
CVE-2004-0095
McAfee ePolicy Orchestrator agent allows remote malicious users to cause a denial of service (memory consumption and crash) and possibly execute arbitrary code via an HTTP POST request with an invalid Content-Length value, possibly triggering a buffer overflow.
Mcafee Epolicy Orchestrator 3.6.0
1 EDB exploit
NA
CVE-2003-0148
The default installation of MSDE via McAfee ePolicy Orchestrator 2.0 up to and including 3.0 allows malicious users to execute arbitrary code via a series of steps that (1) obtain the database administrator username and encrypted password in a configuration file from the ePO serv...
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 2.0
NA
CVE-2003-0149
Heap-based buffer overflow in ePO agent for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote malicious users to execute arbitrary code via a POST request containing long parameters.
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 2.5.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »