PT-2012-1280 · Mcafee · Mcafee Agent+1
Published
2012-08-22
·
Updated
2017-08-29
·
CVE-2009-5115
CVSS v2.0
6.5
Medium
| Vector | AV:N/AC:L/Au:S/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
McAfee Common Management Agent (CMA) versions 3.5.5 through 3.5.5.588
McAfee Common Management Agent (CMA) versions 3.6.0 through 3.6.0.608
McAfee Agent versions prior to 4.0 Patch 3
Description
The issue allows remote authenticated users to overwrite arbitrary files by accessing a report-writing ActiveX control COM object.
Recommendations
For McAfee Common Management Agent (CMA) versions 3.5.5 through 3.5.5.588, update to a version outside of this range to resolve the issue.
For McAfee Common Management Agent (CMA) versions 3.6.0 through 3.6.0.608, update to a version outside of this range to resolve the issue.
For McAfee Agent versions prior to 4.0 Patch 3, apply Patch 3 to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mcafee Agent
Mcafee Common Management Agent