McAfee Common Management Agent < 3.6.0.546 Multiple Vulnerabilities

high Nessus Plugin ID 25702

Synopsis

A security management service running on the remote host is affected by multiple vulnerabilities.

Description

The McAfee Common Management Agent (CMA) running on the remote host is prior to version 3.6.0 Patch 1 (3.6.0.546). It is, therefore, affected by multiple vulnerabilities :

- An integer underflow condition exists that allows an unauthenticated, remote attacker to execute arbitrary code via a specially crafted UDP packet. (CVE-2006-5271)

- A stack-based buffer overflow condition exists due to improper checking of boundary limits when receiving ping packets. An unauthenticated, remote attacker can exploit this, via a specially crafted packet, to cause a denial of service condition or the execution of arbitrary code.
(CVE-2006-5272)

- A heap buffer overflow condition exists due to improper checking of bounds when receiving certain packets. An unauthenticated, remote attacker can exploit this, via a specially crafted packet, to cause a denial of service condition or the execution of arbitrary code.
(CVE-2006-5273)

- An integer overflow condition exists in the CMA Framework service that allows an unauthenticated, remote attacker to cause a denial of service condition or the execution of arbitrary code. (CVE-2006-5274)

Solution

Upgrade to McAfee Common Management Agent version 3.6.0 Patch 1 (3.6.0.546) or later.

See Also

http://web.archive.org/web/20160520075614/http://www.iss.net:80/threats/269.html

Plugin Details

Severity: High

ID: 25702

File Name: mcafee_cma_3_6_0_546.nasl

Version: 1.29

Type: remote

Family: CGI abuses

Published: 7/10/2007

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 7.6

Temporal Score: 5.6

Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: High

Base Score: 8.1

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:mcafee:common_management_agent, cpe:/a:mcafee:epolicy_orchestrator

Exploit Ease: No known exploits are available

Patch Publication Date: 7/10/2007

Vulnerability Publication Date: 7/10/2007

Reference Information

CVE: CVE-2006-5271, CVE-2006-5272, CVE-2006-5273, CVE-2006-5274

BID: 24863