Detections
Analytics
McAfee Web Gateway < 7.3.2.6 / 7.4.1 Information Disclosure (SB10063)
medium Nessus Plugin ID 73137
Language:
Synopsis
The remote host is affected by an information disclosure vulnerability.Description
The remote host is running a version of McAfee Web Gateway prior to 7.3.2.6 / 7.4.1. It is, therefore, affected by an information disclosure vulnerability. A remote attacker could potentially exploit this vulnerability to download any file from the device that the user 'mwg' has access to.Solution
Upgrade to 7.3.2.6 / 7.4.1 or later.See Also
https://kc.mcafee.com/corporate/index?page=content&id=SB10063
Plugin Details
Severity: Medium
ID: 73137
File Name: mcafee_web_gateway_SB10063.nasl
Version: 1.9
Type: combined
Family: Misc.
Published: 3/21/2014
Updated: 11/26/2019
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.4
CVSS v2
Risk Factor: Medium
Base Score: 4
Temporal Score: 3
Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N
CVSS Score Source: CVE-2014-2535
Vulnerability Information
CPE: cpe:/a:mcafee:web_gateway
Required KB Items: Host/McAfee Web Gateway/Version, Host/McAfee Web Gateway/Display Version
Exploit Ease: No known exploits are available
Patch Publication Date: 1/28/2014
Vulnerability Publication Date: 2/24/2014
Reference Information
CVE: CVE-2014-2535
BID: 66193
MCAFEE-SB: SB10063