lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <CAAnZqX_Jb_wxaYdD2Xhdq870rW6bL-jVM539WCgf4Z8V4hEOfA@mail.gmail.com>
Date: Sun, 30 Jul 2017 10:41:27 +0300
From: Maor Shwartz <maors@...ondsecurity.com>
To: fulldisclosure@...lists.org
Cc: SecuriTeam Secure Disclosure <ssd@...ondsecurity.com>
Subject: [FD] SSD Advisory – McAfee Security Scan Plus Remote Command Execution

SSD Advisory – McAfee Security Scan Plus Remote Command Execution

Full report: https://blogs.securiteam.com/index.php/archives/3350
Twitter: @SecuriTeam_SSD

*Vulnerability Summary*
The following advisory describes a Remote Code Execution found in McAfee
Security Scan Plus. An active network attacker could launch a
man-in-the-middle attack on a plaintext-HTTP response to a client to run
any residing executables with privileges of a logged in user.

McAfee Security Scan Plus is a free diagnostic tool that ensures you are
protected from threats by actively checking your computer for up-to-date
anti-virus, firewall, and web security software. It also scans for threats
in any open programs.

*Credit*
An independent security researcher has reported this vulnerability to
Beyond Security’s SecuriTeam Secure Disclosure program

*Vendor response*
The vendor has released patches to address this vulnerability.
For more information:
https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS102714
CVE: CVE-2017-3897

--
Thanks
Maor Shwartz
GPG Key ID: 93CC36E2DE7FF514

Download attachment "SSD Advisory – McAfee Security Scan Plus Remote Command Execution – SecuriTeam Blogs.pdf" of type "application/pdf" (139652 bytes)


_______________________________________________
Sent through the Full Disclosure mailing list
https://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ