McAfee Host Intrusion Prevention Services < Authentication Bypass (SB10173)

Low Nessus Plugin ID 95469


A security application installed on the remote host is affected by an authentication bypass vulnerability.


The version of McAfee Host Intrusion Prevention Services (HIPS) is prior to It is, therefore, affected by an authentication bypass vulnerability due to improper registry key permissions. A local attacker can exploit this, under certain conditions, to manipulate the product's registry keys.


Upgrade to McAfee Host Intrusion Prevention Services 8.0 Patch 8 ( or later.

See Also

Plugin Details

Severity: Low

ID: 95469

File Name: mcafee_hips_8_0_0_3828.nasl

Version: $Revision: 1.4 $

Type: local

Agent: windows

Family: Windows

Published: 2016/12/02

Modified: 2016/12/19

Dependencies: 95470

Risk Information

Risk Factor: Low


Base Score: 2.1

Temporal Score: 1.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:N

Temporal Vector: CVSS2#E:U/RL:OF/RC:C


Base Score: 3.3

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Vulnerability Information

CPE: cpe:/a:mcafee:host_intrusion_prevention

Required KB Items: installed_sw/McAfee Host Intrusion Prevention

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2016/08/25

Vulnerability Publication Date: 2016/10/19

Reference Information

CVE: CVE-2016-8007

BID: 93813

OSVDB: 146142


IAVB: 2016-B-0170