McAfee Security-as-a-Service ActiveX Control Remote Command Execution Vulnerability

McAfee Security-as-a-Service is prone to a remote command-execution vulnerability.

An attacker can exploit this issue by enticing an unsuspecting user to view a malicious webpage.

Successful exploits will allow the attacker to execute arbitrary commands within the context of the application that uses the ActiveX control (typically Internet Explorer).


 

Privacy Statement
Copyright 2010, SecurityFocus