Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2012-4595
McAfee Email and Web Security (EWS) 5.5 through Patch 6 and 5.6 through Patch 3, and McAfee Email Gateway (MEG) 7.0.0 and 7.0.1, allows remote malicious users to bypass authentication and obtain an admin session ID via unspecified vectors.
Mcafee Email And Web Security 5.5
Mcafee Email And Web Security 5.6
Mcafee Email Gateway 7.0.0
Mcafee Email Gateway 7.0.1
668
VMScore
CVE-2011-5100
The web interface in McAfee Firewall Reporter prior to 5.1.0.13 does not properly implement cookie authentication, which allows remote malicious users to obtain access, and disable anti-virus functionality, via an HTTP request.
Mcafee Firewall Reporter
668
VMScore
CVE-2006-5272
Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and previous versions allows remote malicious users to execute arbitrary code via a crafted ping packet.
Mcafee Protectionpilot 1.1.1
Mcafee Common Management Agent
Mcafee Protectionpilot 1.5.0
Mcafee E-business Server 3.5
Mcafee E-business Server 3.6.1
668
VMScore
CVE-2007-1538
McAfee VirusScan Enterprise 8.5.0.i uses insecure permissions for certain Windows Registry keys, which allows local users to bypass local password protection via the UIP value in (1) HKEY_LOCAL_MACHINE\SOFTWARE\McAfee\DesktopProtection or (2) HKEY_LOCAL_MACHINE\SOFTWARE\Network A...
Mcafee Virusscan Enterprise 8.5i
668
VMScore
CVE-2005-2188
McAfee IntruShield Security Management System obtains the user ID from the URL, which allows remote malicious users to guess the Manager account and possibly gain privileges via a brute force attack.
Mcafee Intrushield Security Management System
668
VMScore
CVE-2005-0644
Buffer overflow in McAfee Scan Engine 4320 with DAT version prior to 4436 allows remote malicious users to execute arbitrary code via a malformed LHA file with a type 2 header file name field, a variant of CVE-2005-0643.
Mcafee Antivirus Engine 4.3.20
668
VMScore
CVE-2004-2635
An ActiveX control for McAfee Security Installer Control System 4.0.0.81 allows remote malicious users to access the Windows registry via web pages that use the control's RegQueryValue() method.
Mcafee Security Installer Control System 4.0.0.81
668
VMScore
CVE-2004-0038
McAfee ePolicy Orchestrator (ePO) 2.5.1 Patch 13 and 3.0 SP2a Patch 3 allows remote malicious users to execute arbitrary commands via certain HTTP POST requests to the spipe/file handler on ePO TCP port 81.
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 3.0
668
VMScore
CVE-2003-0149
Heap-based buffer overflow in ePO agent for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote malicious users to execute arbitrary code via a POST request containing long parameters.
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 2.5.1
668
VMScore
CVE-2003-0616
Format string vulnerability in ePO service for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote malicious users to execute arbitrary code via a POST request with format strings in the computerlist parameter, which are used when logging a failed name resolution.
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 2.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »