Detections
Analytics
McAfee Common Management Agent Remote Denial of Service
high Nessus Network Monitor Plugin ID 5239
Synopsis
The remote web server is vulnerable to a remote denial of service attack.Description
The remote web server is hosting McAfee Common Management Agent, a management related component for various McAfee products. The installed version of McAfee Common Management Agent is earlier than 3.6.0.603. Such versions are potentially affected by a remote denial of service vulnerability in the 'FrameworkService.exe' component when handling multiple large HTTP requests.Solution
Upgrade to Common Management Agent 3.6.0 Patch 3 with HotFix 10 or later.See Also
https://kc.mcafee.com/corporate/index?page=content&id=KB52556
Plugin Details
Severity: High
ID: 5239
Family: Web Servers
Published: 11/24/2009
Updated: 3/6/2019
Risk Information
VPR
Risk Factor: Medium
Score: 4.2
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 7.1
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS v3
Risk Factor: High
Base Score: 7.3
Temporal Score: 7.1
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Temporal Vector: CVSS:3.0/E:F/RL:U/RC:X
Vulnerability Information
CPE: cpe:/a:1024_cms:1024_cms
Patch Publication Date: 10/14/2008
Vulnerability Publication Date: 4/2/2008
Reference Information
CVE: CVE-2007-6584
BID: 28753