CVSS: 9.8EPSS: 12%CPEs: 5EXPL: 0CVE-2006-5271
https://notcve.org/view.php?id=CVE-2006-5271
12 Jul 2007 — Integer underflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted UDP packet, which causes stack corruption. Desbordamiento inferior de un entero en el McAfee ePolicy Orchestrator 3.5 hasta el 3.6.1, el ProtectionPilot 1.1.1 y 1.5 y el Common Management Agent (CMA) 3.6.0.453 y versiones anteriores permite a atacantes remotos ejecutar código de su elección a... • http://secunia.com/advisories/26029 •
CVSS: 9.8EPSS: 5%CPEs: 6EXPL: 0CVE-2006-5272
https://notcve.org/view.php?id=CVE-2006-5272
12 Jul 2007 — Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted ping packet. Desbordamiento de búfer basado en pila en McAfee ePolicy Orchestrator 3.5 hasta 3.6.1, ProtectionPilot 1.1.1 y 1.5, y Common Management Agent (CMA) 3.6.0.453 y anteriores permiten a atacantes remotos ejecutar código de su elección mediante un paquete ping artesanal. • http://secunia.com/advisories/26029 •
CVSS: 9.8EPSS: 8%CPEs: 7EXPL: 0CVE-2006-5273
https://notcve.org/view.php?id=CVE-2006-5273
12 Jul 2007 — Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 through 3.6.0.453 allows remote attackers to execute arbitrary code via a crafted packet. Desbordamiento de búfer basado en pila en McAfee ePolicy Orchestrator 3.5 hasta 3.6.1, ProtectionPilot 1.1.1 y 1.5, y Common Management Agent (CMA) 3.5.5.438 hasta 3.6.0.453 permite a atacantes remotos ejecutar código de su elección mediante un paquete artesanal. • http://secunia.com/advisories/26029 •
CVSS: 9.8EPSS: 12%CPEs: 6EXPL: 0CVE-2006-5274
https://notcve.org/view.php?id=CVE-2006-5274
12 Jul 2007 — Integer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 allows remote attackers to cause a denial of service (CMA Framework service crash) and possibly execute arbitrary code via unspecified vectors. Desbordamiento de entero en McAfee ePolicy Orchestrator 3.5 hasta 3.6.1, ProtectionPilot 1.1.1 y 1.5, y Common Management Agent (CMA) 3.5.5.438 permite a atacantes remotos provocar una denegación de servicio (caída del servici... • http://secunia.com/advisories/26029 •
CVSS: 9.8EPSS: 27%CPEs: 5EXPL: 0CVE-2007-1498
https://notcve.org/view.php?id=CVE-2007-1498
16 Mar 2007 — Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ActiveX control (SiteManager.dll) in the ePO management console in McAfee ePolicy Orchestrator (ePO) before 3.6.1 Patch 1 and ProtectionPilot (PRP) before 1.5.0 HotFix allow remote attackers to execute arbitrary code via a long argument to the (1) ExportSiteList and (2) VerifyPackageCatalog functions, and (3) unspecified vectors involving a swprintf function call. Múltiples desbordamientos de búfer basados en pila en el control ActiveX Site ... • http://lists.grok.org.uk/pipermail/full-disclosure/2007-March/052960.html •
CVSS: 10.0EPSS: 74%CPEs: 4EXPL: 4CVE-2006-5156 – McAfee ePo 3.5.0 / ProtectionPilot 1.1.0 - Source Remote
https://notcve.org/view.php?id=CVE-2006-5156
03 Oct 2006 — Buffer overflow in McAfee ePolicy Orchestrator before 3.5.0.720 and ProtectionPilot before 1.1.1.126 allows remote attackers to execute arbitrary code via a request to /spipe/pkg/ with a long source header. Desbordamiento de búfer en McAfee ePolicy Orchestrator anterior a 3.5.0.720 y ProtectionPilot anterior a 1.1.1.126 permite a atacantes remotos ejecutar código de su elección mediante una petición a /spipe/pkg/ con una cabecera fuente larga. • https://www.exploit-db.com/exploits/2467 •