How to Buy
This script is Copyright (C) 2008-2016 Tenable Network Security, Inc.
A security management service running on the remote host is affected
by a remote code execution vulnerability.
According to its banner, the version of McAfee Common Management Agent
(CMA) running on the remote host is prior to 220.127.116.115. It is,
therefore, affected by a flaw in the logDetail() function of
applib.dll due to calling vsnwprintf() without the needed format
string argument. An unauthenticated, remote attacker can exploit this,
via a specially crafted UDP packet, to cause a denial of service
condition or the execution of arbitrary code. This issue only occurs
when the debug level is set to 8 (the highest level but not the
default). Note that Nessus has not checked the debug level setting,
only the version number in the agent's banner.
See also :
Apply Hotfix BZ398370 Build 595 for McAfee Common Management Agent
version 3.6.0 Patch 3.
Risk factor :
High / CVSS Base Score : 7.6
CVSS Temporal Score : 6.5
Public Exploit Available : true
Family: CGI abuses
Nessus Plugin ID: 31732 ()
Bugtraq ID: 28228
CVE ID: CVE-2008-1357
Get Nessus Professional to scan unlimited IPs, run compliance checks & more
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.