CVE-2016-8016

Name of the Vulnerable Software and Affected Versions Intel Security VirusScan Enterprise Linux (VSEL) version 2.0.3 and earlier McAfee VirusScan Enterprise (affected versions not specified)

Description The issue allows authenticated remote attackers to obtain information about the existence of unauthorized files on the system via a URL parameter. It is related to a lack of protection for service data, which can be exploited by a remote attacker to cause a denial of service or other impact on the system.

Recommendations For Intel Security VirusScan Enterprise Linux (VSEL) version 2.0.3 and earlier, consider restricting access to the vulnerable URL parameter until a patch is available. For McAfee VirusScan Enterprise, at the moment, there is no information about a newer version that contains a fix for this vulnerability.