Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.1
CVSSv3

CVE-2016-3984

Published: 08/04/2016 Updated: 18/05/2016
CVSS v2 Base Score: 3.6 | Impact Score: 4.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 5.1 | Impact Score: 4.2 | Exploitability Score: 0.8
VMScore: 365
Vector: AV:L/AC:L/Au:N/C:N/I:P/A:P
Subscribe to Active Response

Vulnerability Summary

The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) prior to 1.1.0.161, Agent (MA) 5.x prior to 5.0.2 Hotfix 1110392 (5.0.2.333), Data Exchange Layer 2.x (DXL) prior to 2.0.1.140.1, Data Loss Prevention Endpoint (DLPe) 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Device Control (MDC) 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Endpoint Security (ENS) 10.x prior to 10.1, Host Intrusion Prevention Service (IPS) 8.0 prior to 8.0.0.3624, and VirusScan Enterprise (VSE) 8.8 before P7 (8.8.0.1528) on Windows allows local administrators to bypass intended self-protection rules and disable the antivirus engine by modifying registry keys.

Vulnerable Product Search on Vulmon Subscribe to Product

mcafee active response

mcafee data loss prevention endpoint

mcafee data exchange layer

mcafee host intrusion prevention

mcafee virusscan enterprise

mcafee agent

mcafee endpoint security

Exploits

Exploit DB: McAfee VirusScan Enterprise 8.8 - Security Restrictions Bypass
/* Security Advisory @ Mediaservicenet Srl (#01, 13/04/2016) Data Security Division Title: McAfee VirusScan Enterprise security restrictions bypass Application: McAfee VirusScan Enterprise 88 and prior versions Platform: Microsoft Windows Description: A local Windows administrator is able to bypass the s ...

References

CWE-284https://kc.mcafee.com/corporate/index?page=content&id=SB10151http://www.securitytracker.com/id/1035130http://lab.mediaservice.net/advisory/2016-01-mcafee.txthttps://www.exploit-db.com/exploits/39531/http://seclists.org/fulldisclosure/2016/Mar/13https://nvd.nist.govhttps://www.exploit-db.com/exploits/39531/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryptionCVE-2024-4331CVE-2024-26925arbitrary codeCVE-2006-4304CVE-2024-25458CVE-2024-27077reflected XSSCVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook