Описание
Buffer overflow in McAfee ePolicy Orchestrator before 3.5.0.720 and ProtectionPilot before 1.1.1.126 allows remote attackers to execute arbitrary code via a request to /spipe/pkg/ with a long source header.
Ссылки
- Patch
- Patch
- Patch
- Vendor Advisory
- US Government Resource
- Exploit
- ExploitPatch
- Patch
- Patch
- Patch
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:mcafee:epolicy_orchestrator:3.0:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:epolicy_orchestrator:3.0:sp2a:*:*:*:*:*:*
cpe:2.3:a:mcafee:epolicy_orchestrator:3.5.0:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:protectionpilot:1.1.1:*:*:*:*:*:*:*
EPSS
Процентиль: 99%
0.82959
Высокий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Buffer overflow in McAfee ePolicy Orchestrator before 3.5.0.720 and ProtectionPilot before 1.1.1.126 allows remote attackers to execute arbitrary code via a request to /spipe/pkg/ with a long source header.
EPSS
Процентиль: 99%
0.82959
Высокий
10 Critical
CVSS2
Дефекты
NVD-CWE-Other