McAfee ePolicy Orchestrator Agent < 220.127.116.119 Log Viewer DoS
High Nessus Plugin ID 97213
SynopsisA security management application agent running on the remote host is affected by a denial of service vulnerability.
DescriptionAccording to its self-reported version, the McAfee ePolicy Orchestrator (ePO) Agent running on the remote host is 5.0.x prior to 18.104.22.1689. It is, therefore, affected by a flaw in its remote log viewer component due to improper validation of input to an unspecified HTTP GET parameter. An unauthenticated, remote attacker can exploit this, via a specially crafted URL request, to cause a denial of service condition.
Note that that exploitation of this vulnerability requires that both the Agent's log viewing functionality is enabled and the remote log access is not restricted to ePO administrators only. However, these are not set by default.
SolutionUpgrade McAfee ePO Agent to version 22.214.171.1249 or later.