Directory traversal vulnerability in Framework Service component in McAfee ePolicy Orchestrator agent 3.5.0.x and previous versions allows remote malicious users to create arbitrary files via a .. (dot dot) in the directory and filename in a PropsResponse (PackageType) request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mcafee epolicy orchestrator agent |