Published: 22/08/2012 Updated: 22/08/2012

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 940

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

An unspecified ActiveX control in McAfee Virtual Technician (MVT) prior to 6.4, and ePO-MVT, allows remote malicious users to execute arbitrary code or cause a denial of service (Internet Explorer crash) via a crafted web site.

Vulnerable Product	Search on Vulmon	Subscribe to Product
mcafee mcafee virtual technician
mcafee epo mcafee virtual technician 1.0
mcafee epo mcafee virtual technician 1.0.4.0
mcafee epo mcafee virtual technician

McAfee Virtual Technician 6301911 MVTMVTControl6300 ActiveX Control GetObject() Security Bypass Remote Code Execution Vulnerability tested against: Microsoft Windows Vista sp2 Microsoft Windows 2003 r2 sp2 Internet Explorer 7/8/9 product homepage: wwwmcafeecom/it/downloads/free-tools/v ...

## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Metasploit3 < Msf::Exploit::Remote Rank = ExcellentRanking ...

NVD-CWE-noinfo https://kc.mcafee.com/corporate/index?page=content&id=SB10028 https://nvd.nist.gov https://www.exploit-db.com/exploits/18805/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-4598

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect