McAfee EPolicy Orchestrator Framework Service Directory Traversal Vulnerability

Bugtraq ID: 18979
Class: Input Validation Error
CVE: CVE-2006-3623
Remote: Yes
Local: No
Published: Jul 14 2006 12:00AM
Updated: Jun 26 2007 04:48PM
Credit: McAfee and eEye Digital Security each independently discovered this vulnerability.
Vulnerable: McAfee ePolicy Orchestrator 3.5.5
McAfee ePolicy Orchestrator 3.0 SP2a
McAfee ePolicy Orchestrator 3.0
McAfee ePolicy Orchestrator 2.5.1
McAfee ePolicy Orchestrator 2.5 SP1
McAfee ePolicy Orchestrator 2.5
McAfee ePolicy Orchestrator 2.0
McAfee ePolicy Orchestrator 1.1
McAfee ePolicy Orchestrator 1.0
McAfee ePolicy Orchestrator 3.5
Not Vulnerable: McAfee ePolicy Orchestrator 3.6
McAfee ePolicy Orchestrator 3.5.5 .438


 

Privacy Statement
Copyright 2010, SecurityFocus