CVE-2014-8525
https://notcve.org/view.php?id=CVE-2014-8525
McAfee Network Data Loss Prevention (NDLP) before 9.3 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie. McAfee Network Data Loss Prevention (NDLP) anterior a 9.3 no incluye el indicador HTTPOnly en una cabecera Set-Cookie para la cookie de la sesión, lo que facilita a atacantes remotos obtener información potencialmente sensible a través del acceso de secuencias de comandos a esta cookie. • http://www.securityfocus.com/bid/70823 https://exchange.xforce.ibmcloud.com/vulnerabilities/98431 https://kc.mcafee.com/corporate/index?page=content&id=SB10053 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVE-2014-8534
https://notcve.org/view.php?id=CVE-2014-8534
Unspecified vulnerability in the login form in McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to cause a denial of service via a crafted value in the domain field. Vulnerabilidad no especificada en el formulario de inicio de sesión en McAfee Network Data Loss Prevention (NDLP) anterior a 9.2.2 permite a usuarios locales causar una denegación de servicio a través de un valor manipulado en el campo del dominio. • https://kc.mcafee.com/corporate/index?page=content&id=SB10044 •
CVE-2014-8535
https://notcve.org/view.php?id=CVE-2014-8535
McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to bypass intended restriction on unspecified functionality via unknown vectors. McAfee Network Data Loss Prevention (NDLP) anterior a 9.2.2 permite a usuarios locales evadir las restricciones sobre una funcionalidad no especificada a través de vectores desconocidos. • https://kc.mcafee.com/corporate/index?page=content&id=SB10044 •
CVE-2014-8519
https://notcve.org/view.php?id=CVE-2014-8519
Unspecified vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to read arbitrary files via unknown vectors. Vulnerabilidad no especificada en McAfee Network Data Loss Prevention (NDLP) anterior a 9.2.2 permite a usuarios locales leer ficheros arbitrarios a través de vectores desconocidos. • https://kc.mcafee.com/corporate/index?page=content&id=SB10044 •
CVE-2014-8526
https://notcve.org/view.php?id=CVE-2014-8526
McAfee Network Data Loss Prevention (NDLP) before 9.3 allows local users to obtain sensitive information by reading a Java stack trace. McAfee Network Data Loss Prevention (NDLP) anterior a 9.3 permite a usuarios locales obtener información sensible mediante la lectura de una traza de pilas Java. • https://kc.mcafee.com/corporate/index?page=content&id=SB10053 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •