Описание
Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted attackers to execute arbitrary commands via long string parameters, which are later used in vsprintf.
Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted attackers to execute arbitrary commands via long string parameters, which are later used in vsprintf.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-3961
- http://secunia.com/advisories/21264
- http://securitytracker.com/id?1016614
- http://ts.mcafeehelp.com/faq3.asp?docid=407052
- http://www.eeye.com/html/research/advisories/AD2006807.html
- http://www.eeye.com/html/research/upcoming/20060719.html
- http://www.kb.cert.org/vuls/id/481212
- http://www.osvdb.org/27698
- http://www.securityfocus.com/archive/1/442495/100/100/threaded
- http://www.securityfocus.com/bid/19265
- http://www.vupen.com/english/advisories/2006/3096
Связанные уязвимости
Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted attackers to execute arbitrary commands via long string parameters, which are later used in vsprintf.