1. CVE-Search
  2. CVE-2006-5272
ID CVE-2006-5272
Summary Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet.
References
Vulnerable Configurations
  • cpe:2.3:a:mcafee:common_management_agent:-:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:common_management_agent:-:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:common_management_agent:3.5:p5:*:*:*:*:*:*
    cpe:2.3:a:mcafee:common_management_agent:3.5:p5:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:common_management_agent:3.5.5.438:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:common_management_agent:3.5.5.438:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:common_management_agent:3.5.5.568:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:common_management_agent:3.5.5.568:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:common_management_agent:3.5.5.577:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:common_management_agent:3.5.5.577:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:common_management_agent:3.5.5.580:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:common_management_agent:3.5.5.580:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:common_management_agent:3.5.5.588:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:common_management_agent:3.5.5.588:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:common_management_agent:3.6.0.438:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:common_management_agent:3.6.0.438:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:common_management_agent:3.6.0.453:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:common_management_agent:3.6.0.453:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:e-business_server:3.5:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:e-business_server:3.5:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:e-business_server:3.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:e-business_server:3.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:protectionpilot:1.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:protectionpilot:1.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:protectionpilot:1.1.1:p3:*:*:*:*:*:*
    cpe:2.3:a:mcafee:protectionpilot:1.1.1:p3:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:protectionpilot:1.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:protectionpilot:1.5.0:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 20-07-2017 - 01:33)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 24863
confirm https://knowledge.mcafee.com/article/762/613365_f.SAL_Public.html
iss 20070710 McAfee ePolicy Orchestrator Agent Remote Code Execution
osvdb 36099
sectrack 1018363
secunia 26029
vupen ADV-2007-2498
xf security-management-ping-bo(31163)
Last major update 20-07-2017 - 01:33
Published 12-07-2007 - 00:30
Last modified 20-07-2017 - 01:33
Back to Top