McAfee VirusScan Enterprise < 8.8 / 8.7 HF643440 CLI Local Privilege Escalation (SB10014)

Low Nessus Plugin ID 72204


The remote Windows host has an antivirus application that is affected by a CLI local privilege escalation vulnerability.


The remote Windows host has a version of McAfee VirusScan Enterprise (VSE) prior to 8.8 or 8.7 Hot-Fix 643440. It is, therefore, reportedly affected by a CLI local privilege escalation vulnerability that could disable VSE and its connection to McAfee ePolicy Orchestrator (ePO).


Upgrade to VSE 8.8 (or later) or apply 8.7 Hot-Fix 643440.

See Also

Plugin Details

Severity: Low

ID: 72204

File Name: mcafee_vse_sb10014.nasl

Version: 1.4

Type: local

Agent: windows

Family: Windows

Published: 2014/01/29

Updated: 2019/11/26

Dependencies: 12107, 13855

Risk Information

Risk Factor: Low

CVSS v2.0

Base Score: 2.6

Temporal Score: 1.9

Vector: CVSS2#AV:L/AC:H/Au:N/C:N/I:P/A:P

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:mcafee:virusscan_enterprise

Required KB Items: Antivirus/McAfee/installed

Exploit Ease: No known exploits are available

Patch Publication Date: 2011/10/14

Vulnerability Publication Date: 2011/10/14

Reference Information

CVE: CVE-2010-5143