CVE-2013-0140 in McAfee ePolicy Orchestratorinformation

Résumé (Anglaise)

SQL injection vulnerability in the Agent-Handler component in McAfee ePolicy Orchestrator (ePO) before 4.5.7 and 4.6.x before 4.6.6 allows remote attackers to execute arbitrary SQL commands via a crafted request over the Agent-Server communication channel.

Réserver

06/12/2012

Divulgation

01/05/2013

Entrées

VulDB provides additional information and datapoints for this CVE:

IDVulnérabilitéCWEExpConCVE
8551McAfee ePolicy Orchestrator Agent DisplayMSAPropsDetail.do injection SQL89Preuve de conceptCorrectif officielCVE-2013-0140

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

PrécédentAperçuSuivant

Want to know what is going to be exploited?

We predict KEV entries!