3

CVE-2016-4534

Exploit
The McAfee VirusScan Console (mcconsol.exe) in McAfee VirusScan Enterprise 8.8.0 before Hotfix 1123565 (8.8.0.1546) on Windows allows local administrators to bypass intended self-protection rules and unlock the console window by closing registry handles.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.27% 0.807
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3 0.5 2.5
CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:L
nvd@nist.gov 3 2.7 4.9
AV:L/AC:M/Au:S/C:N/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://seclists.org/fulldisclosure/2016/Mar/13
Exploit
https://www.exploit-db.com/exploits/39531/
Exploit
http://packetstormsecurity.com/files/download/136089/mcafeevses-bypass.html
Exploit
http://www.securitytracker.com/id/1035754
https://kc.mcafee.com/corporate/index?page=content&id=SB10158
Patch
Vendor Advisory
https://kc.mcafee.com/resources/sites/MCAFEE/content/live/PRODUCT_DOCUMENTATION/26000/PD26485/en_US/VSE_8_8_HF1123565_release_notes.pdf
Vendor Advisory
https://lab.mediaservice.net/advisory/2016-01-mcafee.txt
Exploit