Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-5115

Overview

Vulnerability Score 6.5 6.5
CVE Id CVE-2009-5115
Last Modified 01 Apr 2013 10:55:27
Published 22 Aug 2012 06:42:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2009-5115

Summary

McAfee Common Management Agent (CMA) 3.5.5 through 3.5.5.588 and 3.6.0 through 3.6.0.608, and McAfee Agent 4.0 before Patch 3, allows remote authenticated users to overwrite arbitrary files by accessing a report-writing ActiveX control COM object.

Vulnerable Systems

Application

  • Mcafee Common Management Agent 3.5.5.438

  • Mcafee Common Management Agent 3.5.5.568

  • Mcafee Common Management Agent 3.5.5.577

  • Mcafee Common Management Agent 3.5.5.580

  • Mcafee Common Management Agent 3.5.5.588

  • Mcafee Common Management Agent 3.6.0.438

  • Mcafee Common Management Agent 3.6.0.453

  • Mcafee Common Management Agent 3.6.0.546

  • Mcafee Common Management Agent 3.6.0.569

  • Mcafee Common Management Agent 3.6.0.574

  • Mcafee Common Management Agent 3.6.0.595

  • Mcafee Common Management Agent 3.6.0.603


References

CONFIRM - https://kc.mcafee.com/corporate/index?page=content&id=SB10002

XF - mcafee-cma-file-overwrite(78446)


Last Updated: 27 May 2016 11:02:08