CVE-2006-5272

3 documents3 sources
Severity
7.5HIGH
EPSS
6.3%
top 9.05%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Mcafee Common Management AgentMcafee E-business ServerMcafee Protectionpilot
Timeline
PublishedJul 12
Latest updateMay 1

Description

Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

NVDmcafee/protectionpilot1.1.1, 1.5.0+1
NVDmcafee/e-business_server3.5, 3.6.1+1

🔴Vulnerability Details

2
GHSA
GHSA-73g2-4frq-ch76: Stack-based buffer overflow in McAfee ePolicy Orchestrator 32022-05-01
CVEList
CVE-2006-5272: Stack-based buffer overflow in McAfee ePolicy Orchestrator 32007-07-12
CVE-2006-5272 (HIGH CVSS 7.5) | Stack-based buffer overflow in McAf | cvebase.io