|
McAfee ePolicy Orchestrator HTTP POST Request Handling Vulnerability
|
|
|
|
|
Secunia Advisory:
|
SA11471
|
|
|
Release Date:
|
2004-04-23
|
|
Last Update:
|
2004-05-11
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
System access
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | McAfee ePolicy Orchestrator 2.x
McAfee ePolicy Orchestrator 3.x
|
| | CVE reference: | CVE-2004-0038 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
ISS X-Force has discovered a vulnerability in McAfee ePolicy Orchestrator, which can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to an error within the spipe/file handler when processing HTTP POST requests. This can be exploited to create files with arbitrary content on a vulnerable server via a specially crafted POST request and push it out to clients.
Successful exploitation may grant Administrator access to a vulnerable server and potentially also allow access to agent system.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector.
Solution:
Apply patches.
Patch 4 for version 3.0 Service Pack 2a:
http://download.nai.com/products/patches/ePO/v3.0/EPO3024.ZIP
Patch 14 for version 2.5.1:
http://download.nai.com/products/patches/ePO/v2.x/EPO25114.zip
Provided and/or discovered by:
Ben Layer, ISS X-Force.
Changelog:
2004-05-11: Added more detailed information from ISS X-Force.
Original Advisory:
http://xforce.iss.net/xforce/alerts/id/173
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
10 Related Secunia Security Advisories
|
|
|
1. McAfee Common Management Agent Framework Service Denial of Service
|
|
2. McAfee ePolicy Orchestrator Framework Service Format String Vulnerability
|
|
3. McAfee ePolicy Orchestrator / ProtectionPilot Common Management Agent Vulnerabilities
|
|
4. McAfee ePolicy Orchestrator / ProtectionPilot ActiveX Control Buffer Overflows
|
|
5. McAfee ePolicy Orchestrator / ProtectionPilot Source Header Buffer Overflow
|
|
6. McAfee ePolicy Orchestrator Directory Traversal Vulnerability
|
|
7. ePolicy Orchestrator / ProtectionPilot Insecure Directory Permissions
|
|
8. McAfee ePolicy Orchestrator Invalid "Content-Length:" Denial of Service
|
|
9. McAfee ePolicy Orchestrator Multiple Vulnerabilities
|
|
10. McAfee ePolicy Orchestrator Format String Vulnerability
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
