Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4593

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-4593
Last Modified 22 Aug 2012 12:00:00
Published 22 Aug 2012 06:42:05
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4593

Summary

McAfee Application Control and Change Control 5.1.x and 6.0.0 do not enforce an intended password requirement in certain situations involving attributes of the password file, which allows local users to bypass authentication by executing a command.

Vulnerable Systems

Application

  • Mcafee Application Control 5.1.0

  • Mcafee Application Control 5.1.1

  • Mcafee Application Control 5.1.2

  • Mcafee Application Control 6.0.0

  • Mcafee Change Control 5.1.0

  • Mcafee Change Control 5.1.1

  • Mcafee Change Control 5.1.2

  • Mcafee Change Control 6.0.0


References

CONFIRM - https://kc.mcafee.com/corporate/index?page=content&id=SB10023


Last Updated: 27 May 2016 11:00:18