McAfee DLPe Agent Privilege Escalation Vulnerability on Windows XP (SB10097)

Medium Nessus Plugin ID 81247


The remote host is affected by a privilege escalation vulnerability.


The remote Windows XP host is running a version of the McAfee DLPe agent that is affected by a privilege escalation vulnerability, which a local attacker can exploit by sending specially crafted commands to a kernel mode driver.


Upgrade to McAfee DLPe 9.3 Patch 4 or higher.

See Also

Plugin Details

Severity: Medium

ID: 81247

File Name: mcafee_dlpe_SB10097.nasl

Version: $Revision: 1.6 $

Type: local

Agent: windows

Family: Windows

Published: 2015/02/09

Modified: 2016/12/19

Dependencies: 13855, 81246

Risk Information

Risk Factor: Medium


Base Score: 6.9

Temporal Score: 5.4

Vector: CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:POC/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:mcafee:data_loss_prevention_endpoint

Required KB Items: installed_sw/McAfee DLPe Agent

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2015/01/20

Vulnerability Publication Date: 2015/01/20

Reference Information

CVE: CVE-2015-1305

BID: 72395

OSVDB: 117345