Filtered by vendor Mcafee
Subscribe
Total
186 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-0038 | 1 Mcafee | 1 Epolicy Orchestrator | 2023-12-10 | 7.5 HIGH | N/A |
McAfee ePolicy Orchestrator (ePO) 2.5.1 Patch 13 and 3.0 SP2a Patch 3 allows remote attackers to execute arbitrary commands via certain HTTP POST requests to the spipe/file handler on ePO TCP port 81. | |||||
CVE-2001-1456 | 4 Mcafee, Network Associates, Pgp and 1 more | 5 Webshield Smtp, Gauntlet Firewall, Mcafee E-ppliance and 2 more | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflow in the (1) smap/smapd and (2) CSMAP daemons for Gauntlet Firewall 5.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted mail message. | |||||
CVE-2004-1908 | 1 Mcafee | 1 Freescan | 2023-12-10 | 5.0 MEDIUM | N/A |
McFreeScan.CoMcFreeScan.1 ActiveX object in Mcafee FreeScan allows remote attackers to obtain sensitive information via the GetSpecialFolderLocation function with certain parameters. | |||||
CVE-2001-1144 | 1 Mcafee | 1 Asap Virusscan | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in McAfee ASaP VirusScan agent 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP request. | |||||
CVE-2003-0610 | 1 Mcafee | 1 Epolicy Orchestrator | 2023-12-10 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in ePO agent for McAfee ePolicy Orchestrator 3.0 allows remote attackers to read arbitrary files via a certain HTTP request. | |||||
CVE-2003-0148 | 1 Mcafee | 1 Epolicy Orchestrator | 2023-12-10 | 7.2 HIGH | N/A |
The default installation of MSDE via McAfee ePolicy Orchestrator 2.0 through 3.0 allows attackers to execute arbitrary code via a series of steps that (1) obtain the database administrator username and encrypted password in a configuration file from the ePO server using a certain request, (2) crack the password due to weak cryptography, and (3) use the password to pass commands through xp_cmdshell. |