Format string vulnerability in ePO service for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote malicious users to execute arbitrary code via a POST request with format strings in the computerlist parameter, which are used when logging a failed name resolution.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mcafee epolicy orchestrator 2.5.1 |
||
mcafee epolicy orchestrator 2.5 |
||
mcafee epolicy orchestrator 2.0 |