Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4595

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2012-4595
Last Modified 10 Apr 2013 11:31:06
Published 22 Aug 2012 06:42:05
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4595

Summary

McAfee Email and Web Security (EWS) 5.5 through Patch 6 and 5.6 through Patch 3, and McAfee Email Gateway (MEG) 7.0.0 and 7.0.1, allows remote attackers to bypass authentication and obtain an admin session ID via unspecified vectors.

Vulnerable Systems

Application

  • Mcafee Email And Web Security 5.5

  • Mcafee Email And Web Security 5.6

  • Mcafee Email Gateway 7.0.0

  • Mcafee Email Gateway 7.0.1


References

CONFIRM - https://kc.mcafee.com/corporate/index?page=content&id=SB10026

XF - mcafee-ews-id-sec-bypass(77977)

SECTRACK - 1027444


Last Updated: 27 May 2016 11:00:18