PT-2017-6409 · Mcafee+1 · Mcafee Application Control+1

Publicado

2017-03-14

Atualizado

2017-03-29

CVE-2014-9920

CVSS v2.0

4.3

Média

Vetor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions McAfee Application Control (MAC) versions 6.0.0 through 6.1.3 before respective hotfixes

Description The issue allows attackers to create a malformed Windows binary that is considered non-executable and bypass the whitelisting protection feature through specific circumstances.

Recommendations For McAfee Application Control (MAC) version 6.0.0, apply hotfix 9726. For McAfee Application Control (MAC) version 6.0.1, apply hotfix 9068. For McAfee Application Control (MAC) version 6.1.0, apply hotfix 692. For McAfee Application Control (MAC) version 6.1.1, apply hotfix 399. For McAfee Application Control (MAC) version 6.1.2, apply hotfix 426. For McAfee Application Control (MAC) version 6.1.3, apply hotfix 357.

Correção

Improper Access Control

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-284

Identificadores relacionados

CVE-2014-9920

Produtos afetados

Mcafee Application Control

Windows

PT-2017-6409 · Mcafee+1 · Mcafee Application Control+1

CVE-2014-9920

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 2