ID CVE-2008-1855
Summary FrameworkService.exe in McAfee Common Management Agent (CMA) 3.6.0.574 Patch 3 and earlier, as used by ePolicy Orchestrator (ePO) and ProtectionPilot (PrP), allows remote attackers to corrupt memory and cause a denial of service (CMA Framework service crash) via a long invalid method in requests for the /spin//AVClient//AVClient.csp URI, a different vulnerability than CVE-2006-5274.
References
Vulnerable Configurations
  • cpe:2.3:a:mcafee:cma:3.6.0.574
    cpe:2.3:a:mcafee:cma:3.6.0.574
CVSS
Base: 5.0 (as of 17-04-2008 - 12:58)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
exploit-db via4
description Mcafee EPO 4.0 FrameworkService.exe Remote Denial of Service Exploit. CVE-2008-1855. Dos exploit for windows platform
file exploits/windows/dos/5343.py
id EDB-ID:5343
last seen 2016-01-31
modified 2008-04-02
platform windows
port
published 2008-04-02
reporter muts
source https://www.exploit-db.com/download/5343/
title Mcafee EPO 4.0 - FrameworkService.exe Remote Denial of Service Exploit
type dos
nessus via4
NASL family CGI abuses
NASL id MCAFEE_CMA_3_6_0_603.NASL
description According to its banner, the version of the McAfee Common Management Agent (CMA) running on the remote host is prior to 3.6.0.603. It is, therefore, affected by a denial of service vulnerability in FrameworkService.exe due to a memory corruption issue. An unauthenticated, remote attacker can exploit this, via a long invalid method in requests to the /spin//AVClient//AVClient.csp URI, to cause the CMA Framework Service to crash.
last seen 2019-02-21
modified 2018-11-15
plugin id 42871
published 2009-11-23
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=42871
title McAfee Common Management Agent < 3.6.0.603 FrameworkService.exe AVClient DoS
refmap via4
bid 28573
confirm https://knowledge.mcafee.com/article/219/615324_f.SAL_Public.html
exploit-db 5343
misc http://www.offensive-security.com/0day/mcafee_again.py.txt
sectrack 1019794
secunia 29637
vupen ADV-2008-1122
xf mcafee-cma-frameworkservice-dos(41597)
Last major update 19-02-2017 - 00:22
Published 16-04-2008 - 15:05
Last modified 28-09-2017 - 21:30
Back to Top