Mcafee

Web Gateway

41 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2016-1840

Exploit
  • EPSS 2.14%
  • Veröffentlicht 20.05.2016 10:59:54
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause...

5.5

CVE-2016-1839

Exploit
  • EPSS 10.77%
  • Veröffentlicht 20.05.2016 10:59:53
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a craft...

5.5

CVE-2016-1838

Exploit
  • EPSS 10.65%
  • Veröffentlicht 20.05.2016 10:59:52
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-...

5.5

CVE-2016-1837

Exploit
  • EPSS 0.79%
  • Veröffentlicht 20.05.2016 10:59:51
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remot...

5.5

CVE-2016-1836

  • EPSS 1.15%
  • Veröffentlicht 20.05.2016 10:59:50
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via ...

9.3

CVE-2016-1834

Exploit
  • EPSS 2.37%
  • Veröffentlicht 20.05.2016 10:59:48
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of...

5.5

CVE-2016-1833

Exploit
  • EPSS 1.21%
  • Veröffentlicht 20.05.2016 10:59:47
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafte...

8.1

CVE-2016-1762

Exploit
  • EPSS 8.58%
  • Veröffentlicht 24.03.2016 01:59:30
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

4

CVE-2014-6064

  • EPSS 0.25%
  • Veröffentlicht 02.09.2014 14:55:03
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Accounts tab in the administrative user interface in McAfee Web Gateway (MWG) before 7.3.2.9 and 7.4.x before 7.4.2 allows remote authenticated users to obtain the hashed user passwords via unspecified vectors.

4

CVE-2014-2535

  • EPSS 1.31%
  • Veröffentlicht 18.03.2014 17:04:18
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Directory traversal vulnerability in McAfee Web Gateway (MWG) 7.4.x before 7.4.1, 7.3.x before 7.3.2.6, and 7.2.0.9 and earlier allows remote authenticated users to read arbitrary files via a crafted request to the web filtering port.