漏洞类别:Local
漏洞等级: 
漏洞信息
McAfee Network Security Manager allows remote management of McAfee sensors deployed throughout in a network.
McAfee Network Security Manager has a vulnerable version of PHP installed which can be exploited to redirect outgoing HTTP requests. Affected Versions:
McAfee Network Security Manager 9.1.x before 9.1.7.11
McAfee Network Security Manager 8.1.x before 8.1.7.91 and 8.1.19.18(for FIPS installations)
QID Detection Logic (Authenticated):
The checks if McAfee Network Security Manager is installed on the target with the key "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Manager" value "DisplayName". The checks flags if a vulnerable version is found by looking at the key "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Manager" value "DisplayVersion".
漏洞危害
A remote attacker could possibly use this issue in combination with scripts that honour the HTTP_PROXY variable to redirect outgoing HTTP requests.
解决方案
Customers are advised to download the latest version of McAfee Network Security Manager from the McAfee Product Downloads page.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0daybank
文章评论