McAfee Application Control 6.x < 6.2.0.567 / 7.0.x < 7.0.1.275 Unauthorized IOCTL Use Local Privilege Escalation (SB10175)

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote host has a security application installed that is affected
by a local privilege escalation vulnerability.

Description :

The version of McAfee Application Control (MAC) installed on the
remote Windows host is 6.x prior to 6.2.0 build 567 or 7.0.x prior to
7.0.1 build 275. It is, therefore, affected by a local privilege
escalation vulnerability due to the unauthorized use of IOCTL. A local
attacker can exploit this to gain elevated privileges.

See also :

https://kc.mcafee.com/corporate/index?page=content&id=SB10175

Solution :

Upgrade to McAfee Application Control version 6.2.0.567 / 7.0.1.275 or
later as referenced in the vendor advisory.

Risk factor :

High / CVSS Base Score : 7.2
(CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 5.3
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 95924 ()

Bugtraq ID:

CVE ID: CVE-2016-8009

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now