PT-2018-2692 · Mcafee · Mcafee Application/Change Control

Published

2018-12-16

Updated

2019-10-09

CVE-2018-6669

CVSS v3.1

8.0

High

Vector

AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions McAfee Application Control / Change Control version 7.0.1 and earlier

Description The issue is related to a whitelist bypass, allowing a remote or local user to execute blacklisted files. This is due to errors in the implementation of the blacklist mechanism. Exploitation of this issue may enable an attacker to bypass existing restrictions on file execution and execute arbitrary code.

Recommendations For McAfee Application Control / Change Control version 7.0.1 and earlier, consider restricting access to ASP.NET forms until a patch is available. As a temporary workaround, review and strengthen the implementation of the blacklist mechanism to prevent the execution of blacklisted files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-592CWE-425

Related Identifiers

BDU:2019-01360

CVE-2018-6669

Affected Products

Mcafee Application/Change Control

PT-2018-2692 · Mcafee · Mcafee Application/Change Control

CVE-2018-6669

Weakness Enumeration

Related Identifiers

Affected Products

References · 7