Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2016-4535

Published: 05/05/2016 Updated: 10/05/2016
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 785
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Livesafe

Vulnerability Summary

Integer signedness error in the AV engine before DAT 8145, as used in McAfee LiveSafe 14.0, allows remote malicious users to cause a denial of service (memory corruption and crash) via a crafted packed executable.

Vulnerable Product Search on Vulmon Subscribe to Product

mcafee livesafe 14.0

Exploits

Exploit DB: McAfee LiveSafe 14.0 - Relocations Processing Memory Corruption
Source: bugschromiumorg/p/project-zero/issues/detail?id=817 Fuzzing packed executables with McAfee's LiveSafe 140 on Windows found a signedness error parsing sections and relocations The attached fuzzed testcase demonstrates this and causes a crash in mscan64adll I verified that this crash reproduces on Linux and Windows, all version ...

References

CWE-20http://packetstormsecurity.com/files/136907/McAfee-Relocation-Processing-Memory-Corruption.htmlhttps://bugs.chromium.org/p/project-zero/issues/detail?id=817https://www.exploit-db.com/exploits/39770/https://nvd.nist.govhttps://www.exploit-db.com/exploits/39770/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377CVE-2024-20859CVE-2023-49606injectarbitrary CVE-2024-33788CVE-2024-30973IDORCVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook