McAfee ePolicy Orchestrator < 4.6.7 HF940148 XML Entity Injection (SB10065)

Medium Nessus Plugin ID 72729


The remote host is affected by an XML entity injection vulnerability.


The remote Windows host is running a version of McAfee ePolicy Orchestrator (ePO) prior to 4.6.7 hotfix 940148. It is, therefore, affected by an XML entity injection vulnerability due to a failure to properly sanitize user-supplied input. An authenticated, remote attacker with permission to add new dashboards can exploit this vulnerability to access arbitrary server side system files.


Upgrade to McAfee ePO version 4.6.7 hotfix 940148 or later.

See Also

Plugin Details

Severity: Medium

ID: 72729

File Name: mcafee_epo_sb10065.nasl

Version: $Revision: 1.8 $

Type: local

Agent: windows

Family: Windows

Published: 2014/02/27

Modified: 2017/02/27

Dependencies: 67119

Risk Information

Risk Factor: Medium


Base Score: 6.3

Temporal Score: 5.5

Vector: CVSS2#AV:N/AC:M/Au:S/C:C/I:N/A:N

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C


Base Score: 6.5

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Vulnerability Information

CPE: cpe:/a:mcafee:epolicy_orchestrator

Required KB Items: SMB/mcafee_epo/Path, SMB/mcafee_epo/ver

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2014/02/24

Vulnerability Publication Date: 2014/02/24

Reference Information

CVE: CVE-2014-2205

BID: 65771

OSVDB: 103717