Описание
McAfee VirusScan Enterprise 8.5i and 8.7i does not properly interact with the processing of hcp:// URLs by the Microsoft Help and Support Center, which makes it easier for remote attackers to execute arbitrary code via malware that is correctly detected by this product, but with a detection approach that occurs too late to stop the code execution.
Ссылки
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:mcafee:virusscan_enterprise:8.5i:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.7i:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.01472
Низкий
6.4 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
McAfee VirusScan Enterprise 8.5i and 8.7i does not properly interact with the processing of hcp:// URLs by the Microsoft Help and Support Center, which makes it easier for remote attackers to execute arbitrary code via malware that is correctly detected by this product, but with a detection approach that occurs too late to stop the code execution.
EPSS
Процентиль: 81%
0.01472
Низкий
6.4 Medium
CVSS2
Дефекты
CWE-264