CVE-2015-8577

Name of the Vulnerable Software and Affected Versions McAfee VirusScan Enterprise versions prior to 8.8 Patch 6

Description The issue is related to the Buffer Overflow Protection (BOP) feature, which allocates memory with Read, Write, Execute (RWX) permissions at predictable addresses on 32-bit platforms when protecting another application. This allows attackers to bypass the DEP and ASLR protection mechanisms. The exploitation of this issue may enable a local attacker to bypass security mechanisms.

Recommendations For McAfee VirusScan Enterprise versions prior to 8.8 Patch 6, update to version 8.8 Patch 6 or later to resolve the issue. As a temporary workaround, consider restricting the use of the BOP feature until a patch is applied.