This script is Copyright (C) 2017 Tenable Network Security, Inc.
The security application installed on the remote Windows host is
affected by a MitM command execution vulnerability.
The version of McAfee Security Scan Plus installed on the remote
Windows host is prior to 3.11.599.3. It is, therefore, affected by
a flaw in the non-certificate-based authentication mechanism that is
triggered during the handling of HTTP backend-responses. This may
allow a man-in-the-middle attacker to make changes to the Windows
registry value associated with the McAfee update.
See also :
Upgrade to McAfee Security Scan Plus version 3.11.599.3 or later.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 6.2
Public Exploit Available : true