CVE-2018-6687

Name of the Vulnerable Software and Affected Versions: McAfee GetSusp versions 3.0.0.461 and earlier

Description: The issue allows attackers to perform a Denial of Service (DoS) on a manual scan via a specifically crafted file, causing an infinite loop while scanning. GetSusp is a free standalone tool that runs on several versions of Microsoft Windows.

Recommendations: For McAfee GetSusp versions 3.0.0.461 and earlier, consider avoiding the use of manual scans on untrusted or potentially malicious files until a fix is available. As a temporary workaround, restrict the scanning of specifically crafted files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.