cbcvebase.
CVE-2007-1498
published 2007-03-16

CVE-2007-1498: Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ActiveX control (SiteManager.dll) in the ePO management console in McAfee ePolicy…

PriorityP342critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
7.73%
93.9th percentile
Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ActiveX control (SiteManager.dll) in the ePO management console in McAfee ePolicy Orchestrator (ePO) before 3.6.1 Patch 1 and ProtectionPilot (PRP) before 1.5.0 HotFix allow remote attackers to execute arbitrary code via a long argument to the (1) ExportSiteList and (2) VerifyPackageCatalog functions, and (3) unspecified vectors involving a swprintf function call.

Affected

5 ranges
VendorProductVersion rangeFixed in
mcafeeepolicy_orchestrator
mcafeeepolicy_orchestrator
mcafeeepolicy_orchestrator
mcafeeprotectionpilot
mcafeeprotectionpilot
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.