PT-2018-17703 · Mcafee+1 · Mcafee Data Loss Prevention Endpoint+1

Publicado

2018-05-25

Atualizado

2019-10-09

CVE-2018-6664

CVSS v3.1

8.8

Alta

Vetor

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions McAfee Data Loss Prevention (DLP) Endpoint versions prior to 10.0.500 McAfee Data Loss Prevention (DLP) Endpoint versions prior to 11.0.400

Description The issue allows authenticated users to bypass the product block action via a command-line utility. This is related to an Application Protections Bypass vulnerability in Microsoft Windows in McAfee Data Loss Prevention (DLP) Endpoint.

Recommendations For versions prior to 10.0.500, update to version 10.0.500 or later. For versions prior to 11.0.400, update to version 11.0.400 or later.

Correção

Improper Verification of Cryptographic Signature

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-347

Identificadores relacionados

CVE-2018-6664

Produtos afetados

Mcafee Data Loss Prevention Endpoint

Windows

PT-2018-17703 · Mcafee+1 · Mcafee Data Loss Prevention Endpoint+1

CVE-2018-6664

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6