McAfee Email and Web Security Appliance / Email Gateway contains a flaw related to the System Backup Password. The issue is due to the backup containing the hashed passwords of users. These can be used to conduct a brute force attack against, potentially giving access to a variety of accounts.

Upgrade Email and Web Security to version 5.5 Patch 6 or 5.6 Patch 3 or higher, and Email Gateway to version 7.0 Patch 1 or higher, as as they have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• Security Tracker: 1026806 1026807
• CVE ID: 2012-4584 (see also: NVD)
• Secunia Advisory ID: 48406
• Related OSVDB ID: 80138 80139 80140 80142 80143 80144
• Packet Storm: http://packetstormsecurity.org/files/111364/McAfee-Email-And-Web-Security-Appliance-Password-Hash.html
• Mail List Post: http://seclists.org/bugtraq/2012/Mar/161
• Vendor Specific Advisory URL: https://kc.mcafee.com/corporate/index?page=content&id=SB10020

• Ben Williams - NGS Secure Research