Detections
Analytics
McAfee DLPe Agent < 10.0.500 / 11.x < 11.0.400 Master Bypass Vulnerability (SB10233)
high Nessus Plugin ID 127116
Language:
Synopsis
The remote host is affected by a master bypass vulnerability.Description
The version of the McAfee Data Loss Prevention Endpoint (DLPe) Agent installed on the remote Windows host is prior to 10.0.500 or 11.x prior to 11.0.400. It is, therefore, affected by a master bypass vulnerability. An authenticated attacker can exploit this issue using a command line utility to bypass the product block option.Solution
Upgrade to McAfee DLPe 10.0.500 or 11.0.400 or later.See Also
https://kc.mcafee.com/corporate/index?page=content&id=SB10233
Plugin Details
Severity: High
ID: 127116
File Name: mcafee_dlpe_SB10233.nasl
Version: 1.3
Type: local
Agent: windows
Family: Windows
Published: 8/5/2019
Updated: 10/18/2019
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 4.8
Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P
CVSS Score Source: CVE-2018-6664
CVSS v3
Risk Factor: High
Base Score: 8.8
Temporal Score: 7.7
Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:mcafee:data_loss_prevention_endpoint
Required KB Items: SMB/Registry/Enumerated, installed_sw/McAfee DLPe Agent
Exploit Ease: No known exploits are available
Patch Publication Date: 5/8/2018
Vulnerability Publication Date: 5/8/2018
Reference Information
CVE: CVE-2018-6664
BID: 104299
MCAFEE-SB: SB10233