27698 : McAfee Multiple Products SecurityCenter Subscription Manager ActiveX Control (McSubMgr.dll) IsAppExpired Overflow
Printer | http://osvdb.org/27698 | Email This | Edit Vulnerability

Views This Week

Views All Time

215

Info

Last Modified

28 days ago

Percent Complete

100%

Disclosure

Aug 01, 2006

Discovery

Jul 19, 2006

Dates

Exploit

Unknown

Solution

Unknown

Keywords

No Keywords

Description

An overflow exists in several McAfee products using SecurityCenter module. A part of this module called "SecurityCenter Subscription Manager ActiveX control" (McSubMgr.dll) fails to handle an overly long string (more than 3000 bytes) in its 'IsAppExpired' member resulting in a stack overflow. By tricking the user into opening a specially crafted web page, an attacker can execute arbitrary commands resulting in a loss of integrity, and/or availability.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Technical

This vulnerability requires a certain amount of user-interaction for an attack to occur, such as visiting a malicious website.

Solution

Upgrade to version 6.0.23 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

McAfee	VirusScan	2004
		2005
		2006
	SpamKiller	2004
		2005
		2006
	Wireless Home Network Security	2006
	SecurityCenter	6.0.22
		6.0
		4.3
	QuickClean	2004
		2005
		2006
	Privacy Service	2004
		2005
		2006
	Personal Firewall Plus	2004
		2005
		2006
	Internet Security Suite	2004
		2005
		2006
	AntiSpyware	2005
	AntiSpyware	2006

References

Security Tracker: 1016614
Bugtraq ID: 19265
CVE ID: 2006-3961 (see also: NVD)
Secunia Advisory ID: 21264
FrSIRT Advisory: ADV-2006-3096
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-08/0142.html
News Article: http://news.com.com/McAfee+patches+holes+in+security+software/2100-1002_3-6100891 ......
Vendor Specific News/Changelog Entry: http://ts.mcafeehelp.com/faq3.asp?docid=407052
Other Advisory URL: http://www.eeye.com/html/research/advisories/AD2006807.html
Vendor URL: http://www.mcafee.com/
Generic Exploit URL: http://www.metasploit.com

Tools & Filters

Snort	7862 7863 7864 7865

Credit

Karl Lynn - -

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches

Views This Week

Views All Time

Info

Last Modified

Percent Complete

Disclosure

Discovery

Dates

Exploit

Solution

Keywords

Description

Classification

Technical

Solution

Products

McAfee

VirusScan

SpamKiller

Wireless Home Network Security

SecurityCenter

QuickClean

Privacy Service

Personal Firewall Plus

Internet Security Suite

AntiSpyware

References

Tools & Filters

Credit

Blogs

Comments