SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Security)  >   McAfee ePolicy Orchestrator Vendors:   McAfee
McAfee ePolicy Orchestrator Buffer Overflow in 'SiteManager.Dll' Lets Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1017757
SecurityTracker URL:  http://securitytracker.com/id/1017757
CVE Reference:   CVE-2007-1498   (Links to External Site)
Updated:  May 19 2008
Original Entry Date:  Mar 14 2007
Impact:   Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 3.5 patch 6, 3.6.1
Description:   A vulnerability was reported in McAfee ePolicy Orchestrator. A remote user can cause arbitrary code to be executed on the target user's system.

A remote user can create specially crafted HTML that, when loaded by the target user, will trigger one of several buffer overflows in 'SiteManager.Dll' and execute arbitrary code on the target system. The code will run with the privileges of the target user.

The vendor was notified of separate vulnerabilities on December 19 and December 30, 2006.

cocoruder of FSRT (Fortinet Security Research Team) reported this vulnerability.

Impact:   A remote user can create HTML that, when loaded by the target user, will execute arbitrary code on the target system.
Solution:   The vendor has issued a fix.

The McAfee advisories are available at:

https://knowledge.mcafee.com/SupportSite/search.do?cmd=displayKC&docType=kc&sliceId=SAL_Public&externalId=612495
https://knowledge.mcafee.com/SupportSite/search.do?cmd=displayKC&docType=kc&sliceId=SAL_Public&externalId=612496

Vendor URL:  www.mcafee.com/ (Links to External Site)
Cause:   Boundary error
Underlying OS:  Windows (2000), Windows (2003), Windows (XP)

Message History:   None.


 Source Message Contents

Subject:  [Full-disclosure] [Advisory]McAfee ePolicy Orchestrator Multiple

--===============0002906446==
Content-Type: text/plain;
	charset="gb2312"
Content-Transfer-Encoding: base64
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--===============0002906446==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
--===============0002906446==--

 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC