Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.2
CVSSv2

CVE-2012-5879

Published: 28/03/2013 Updated: 29/03/2013
CVSS v2 Base Score: 8.2 | Impact Score: 9.5 | Exploitability Score: 6.8
VMScore: 825
Vector: AV:N/AC:M/Au:S/C:C/I:C/A:P
Subscribe to Mcafee Virtual Technician

Vulnerability Summary

An ActiveX control in McHealthCheck.dll in McAfee Virtual Technician (MVT) and ePO-MVT 6.5.0.2101 and previous versions allows remote malicious users to modify or create arbitrary files via a full pathname argument to the Save method.

Vulnerable Product Search on Vulmon Subscribe to Product

mcafee mcafee virtual technician

mcafee mcafee virtual technician 6.3.0.1911

mcafee epo mcafee virtual technician 1.0.8

mcafee epo mcafee virtual technician 1.0

mcafee epo mcafee virtual technician 1.0.9

mcafee epo mcafee virtual technician 1.0.4.0

mcafee epo mcafee virtual technician 1.0.7

mcafee epo mcafee virtual technician

Exploits

Exploit DB: McAfee Virtual Technician (MVT) 6.5.0.2101 Unsafe Active-X
McAfee Virtual Technician (MVT) 6502101 suffers from an exposed unsafe active-x method ...
Exploit DB: McAfee Virtual Technician (MVT) 6.5.0.2101 - Insecure ActiveX Method
Advisory ID: HTB23128 Product: McAfee Virtual Technician (MVT) 6502101 Vendor: McAfee Vulnerable Version(s): 6502101 and probably prior Tested Version: 6502101 on Windows 7 SP1 and Internet Explorer 9 Vendor Notification: November 19, 2012 Vendor Patch: March 15, 2013 Public Disclosure: March 27, 2013 Vulnerability Type: Exposed Unsafe ...

References

CWE-264http://www.securitytracker.com/id/1028357http://archives.neohapsis.com/archives/bugtraq/2013-03/0143.htmlhttp://www.securityfocus.com/bid/58750http://osvdb.org/91700https://kc.mcafee.com/corporate/index?page=content&id=SB10040https://www.htbridge.com/advisory/HTB23128https://nvd.nist.govhttps://packetstormsecurity.com/files/120979/McAfee-Virtual-Technician-MVT-6.5.0.2101-Unsafe-Active-X.htmlhttps://www.exploit-db.com/exploits/24907/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400CVE-2023-7252CVE-2024-21111denial of serviceCVE-2024-29661CVE-2024-22856remote attackersencryptionCVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook