Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Handlers Diary Blog - SANS Internet Storm Center InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

McAfee EPO fix

Published: 2006-07-17
Last Updated: 2006-07-17 23:28:47 UTC
by Adrien de Beaupre (Version: 1)
0 comment(s)
eEye claim that the vulnerability allows for remote code execution as SYSTEM, McAfee seem to be saying it only allows for placement of arbitrary files on the vulnerable host. McAfee is acknowledging the vulnerability in their EPO product, and have posted a fix. Details at the URL below:

http://knowledge.mcafee.com/article/640/9925498_f.SAL_Public.html

http://www.eeye.com/html/research/advisories/AD20060713.html

Cheers,
Adrien
Keywords:
0 comment(s)
Diary Archives