CVE-2006-5274
Current Description
Integer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 allows remote attackers to cause a denial of service (CMA Framework service crash) and possibly execute arbitrary code via unspecified vectors.
Basic Data
Published | July 12, 2007 |
Last Modified | July 20, 2017 |
Assigner | cve@mitre.org |
Data Type | CVE |
Data Format | MITRE |
Data Version | 4.0 |
Problem Type | NVD-CWE-Other |
CVE Data Version | 4.0 |
Base Metric V2
CVSS 2 - Version | 2.0 |
CVSS 2 - Vector String | AV:N/AC:H/Au:N/C:C/I:C/A:C |
CVSS 2 - Access Vector | NETWORK |
CVSS 2 - Access Complexity | HIGH |
CVSS 2 - Authentication | NONE |
CVSS 2 - Confidentiality Impact | COMPLETE |
CVSS 2 - Availability Impact | COMPLETE |
CVSS 2 - Base Score | 7.6 |
Severity | HIGH |
Exploitability Score | 4.9 |
Impact Score | 10.0 |
Obtain All Privilege | true |
Obtain User Privilege | false |
Obtain Other Privilege | false |
Base Metric V3
No data provided.
Configurations
-
OR - Configuration 1
Cpe Version | Part | Vendor | Product | Version | Update | Edition | Language | SW Edition | Target SW | Target HW | Other | Version Start Including | Version End Including | Version Start Excluding | Version End Excluding |
2.3 | Application | Mcafee | Common Management Agent | 3.6.0.438 | * | * | * | * | * | * | * | |