CNVD-2019-07155

Vulnerability from cnvd - Published: 2019-03-14
VLAI Severity ?
Title
McAfee Agent Common Service释放后重用漏洞
Description
McAfee Agent(MA)是美国迈克菲(McAfee)公司的一套提供了ePolicy Orchestrator(杀毒软件管理平台)与被管理产品之间的安全通信的客户端组件。Common service是其中的一个通用服务组件。 MA 5.0.0版本至5.0.6版本、5.5.0版本和5.5.1版本中的McAfee Common service存在释放后重用漏洞,远程攻击者可借助特制的TCP数据包利用该漏洞造成拒绝服务。
Severity
Patch Name
McAfee Agent Common Service释放后重用漏洞的补丁
Patch Description
McAfee Agent(MA)是美国迈克菲(McAfee)公司的一套提供了ePolicy Orchestrator(杀毒软件管理平台)与被管理产品之间的安全通信的客户端组件。Common service是其中的一个通用服务组件。 MA 5.0.0版本至5.0.6版本、5.5.0版本和5.5.1版本中的McAfee Common service存在释放后重用漏洞,远程攻击者可借助特制的TCP数据包利用该漏洞造成拒绝服务。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description

厂商已发布了漏洞修复程序,请及时关注更新: https://kc.mcafee.com/corporate/index?page=content&id=SB10258

Reference
https://kc.mcafee.com/corporate/index?page=content&id=SB10258
Impacted products
Name
['Mcafee McAfee Agent 5.5.0', 'Mcafee McAfee Agent 5.5.1', 'Mcafee McAfee Agent >=5.0.0,<=5.0.6']
Show details on source website
To clipboard 

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-6703",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6703"
    }
  },
  "description": "McAfee Agent\uff08MA\uff09\u662f\u7f8e\u56fd\u8fc8\u514b\u83f2\uff08McAfee\uff09\u516c\u53f8\u7684\u4e00\u5957\u63d0\u4f9b\u4e86ePolicy Orchestrator\uff08\u6740\u6bd2\u8f6f\u4ef6\u7ba1\u7406\u5e73\u53f0\uff09\u4e0e\u88ab\u7ba1\u7406\u4ea7\u54c1\u4e4b\u95f4\u7684\u5b89\u5168\u901a\u4fe1\u7684\u5ba2\u6237\u7aef\u7ec4\u4ef6\u3002Common service\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u901a\u7528\u670d\u52a1\u7ec4\u4ef6\u3002\n\nMA 5.0.0\u7248\u672c\u81f35.0.6\u7248\u672c\u30015.5.0\u7248\u672c\u548c5.5.1\u7248\u672c\u4e2d\u7684McAfee Common service\u5b58\u5728\u91ca\u653e\u540e\u91cd\u7528\u6f0f\u6d1e\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684TCP\u6570\u636e\u5305\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
  "discovererName": "Frank Cozijnsen",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://kc.mcafee.com/corporate/index?page=content\u0026id=SB10258",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2019-07155",
  "openTime": "2019-03-14",
  "patchDescription": "McAfee Agent\uff08MA\uff09\u662f\u7f8e\u56fd\u8fc8\u514b\u83f2\uff08McAfee\uff09\u516c\u53f8\u7684\u4e00\u5957\u63d0\u4f9b\u4e86ePolicy Orchestrator\uff08\u6740\u6bd2\u8f6f\u4ef6\u7ba1\u7406\u5e73\u53f0\uff09\u4e0e\u88ab\u7ba1\u7406\u4ea7\u54c1\u4e4b\u95f4\u7684\u5b89\u5168\u901a\u4fe1\u7684\u5ba2\u6237\u7aef\u7ec4\u4ef6\u3002Common service\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u901a\u7528\u670d\u52a1\u7ec4\u4ef6\u3002\r\n\r\nMA 5.0.0\u7248\u672c\u81f35.0.6\u7248\u672c\u30015.5.0\u7248\u672c\u548c5.5.1\u7248\u672c\u4e2d\u7684McAfee Common service\u5b58\u5728\u91ca\u653e\u540e\u91cd\u7528\u6f0f\u6d1e\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684TCP\u6570\u636e\u5305\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "McAfee Agent Common Service\u91ca\u653e\u540e\u91cd\u7528\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Mcafee McAfee Agent 5.5.0",
      "Mcafee McAfee Agent 5.5.1",
      "Mcafee McAfee Agent \u003e=5.0.0\uff0c\u003c=5.0.6"
    ]
  },
  "referenceLink": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10258",
  "serverity": "\u9ad8",
  "submitTime": "2018-12-14",
  "title": "McAfee Agent Common Service\u91ca\u653e\u540e\u91cd\u7528\u6f0f\u6d1e"
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.