漏洞类别:Local
漏洞等级: 
漏洞信息
McAfee Network Security Manager allows remote management of McAfee sensors deployed throughout in a network.
Exploitation of authorization vulnerability in the web interface in McAfee Network Security Manager (NSM) in all versions before 8.2.7.71.1 allows authenticated users to gain elevated privileges via a crafted HTTP request parameter. Affected Versions:
All versions before 8.2.7.71.1
QID Detection Logic (Authenticated):
It checks the all the vulnerable versions of Network Security Manager before 8.2.7.71.1
漏洞危害
Exploitation of authorization vulnerability in the web interface in McAfee Network Security Manager allows authenticated users to gain elevated privileges via a crafted HTTP request parameter.
解决方案
Install the provided NSM software updates in the Remediation table mentioned in McAfee Product Downloads page.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0daybank
文章评论