CVE-2008-1357

Name of the Vulnerable Software and Affected Versions McAfee Common Management Agent (CMA) versions 3.6.0.574 (Patch 3) and earlier

Description The issue is related to a format string vulnerability in the logDetail function of applib.dll. This vulnerability can be exploited by remote attackers who send AgentWakeup requests to UDP port 8082 with format string specifiers in the sender field. Successful exploitation can lead to a denial of service (crash) or the execution of arbitrary code. It is noted that this issue only exists when the debug level is set to 8.

Recommendations For McAfee Common Management Agent (CMA) versions 3.6.0.574 (Patch 3) and earlier, consider updating to a version where the debug level does not expose this vulnerability, or avoid using the debug level 8 to minimize the risk of exploitation. As a temporary workaround, consider restricting access to UDP port 8082 to prevent remote attackers from sending malicious requests.