McAfee Application Control 6.x < 18.104.22.1687 / 7.0.x < 22.214.171.1245 Unauthorized IOCTL Use Local Privilege Escalation (SB10175)
High Nessus Plugin ID 95924
SynopsisThe remote host has a security application installed that is affected by a local privilege escalation vulnerability.
DescriptionThe version of McAfee Application Control (MAC) installed on the remote Windows host is 6.x prior to 6.2.0 build 567 or 7.0.x prior to 7.0.1 build 275. It is, therefore, affected by a local privilege escalation vulnerability due to the unauthorized use of IOCTL. A local attacker can exploit this to gain elevated privileges.
SolutionUpgrade to McAfee Application Control version 126.96.36.1997 / 188.8.131.525 or later as referenced in the vendor advisory.