Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-2759

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2015-2759
Last Modified 30 Mar 2015 03:42:01
Published 27 Mar 2015 10:59:09
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2015-2759

Summary

Multiple cross-site request forgery (CSRF) vulnerabilities in the ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allow remote attackers to hijack the authentication of users for requests that (1) obtain sensitive information or (2) modify the database via unspecified vectors.

Vulnerable Systems

Application

  • Mcafee Data Loss Prevention Endpoint 9.3.400


References

CONFIRM - https://kc.mcafee.com/corporate/index?page=content&id=SB10111


Last Updated: 27 May 2016 11:08:14