Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: McAfee EPO fix SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
McAfee EPO fix
eEye claim that the vulnerability allows for remote code execution as SYSTEM, McAfee seem to be saying it only allows for placement of arbitrary files on the vulnerable host. McAfee is acknowledging the vulnerability in their EPO product, and have posted a fix. Details at the URL below:

http://knowledge.mcafee.com/article/640/9925498_f.SAL_Public.html

http://www.eeye.com/html/research/advisories/AD20060713.html

Cheers,
Adrien
I will be teaching next: Advanced Web App Penetration Testing, Ethical Hacking, and Exploitation Techniques - SANS London November 2021 - Live Online

Adrien de Beaupre

353 Posts
ISC Handler
Jul 17th 2006

Sign Up for Free or Log In to start participating in the conversation!