CVE-2009-5115
Severity Score
6.5
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
McAfee Common Management Agent (CMA) 3.5.5 through 3.5.5.588 and 3.6.0 through 3.6.0.608, and McAfee Agent 4.0 before Patch 3, allows remote authenticated users to overwrite arbitrary files by accessing a report-writing ActiveX control COM object.
McAfee Common Management Agent (CMA) v3.5.5 hasta v3.5.5.588 y v3.6.0 hasta v3.6.0.608, y McAfee Agent v4.0 anteriores a Patch 3, permite a usuarios remotos autentificados a sobreescribir ficheros accediendo al objeto COM que es un control ActiveX (report-writing ).
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-08-22 CVE Reserved
- 2012-08-22 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/78446 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10002 | 2017-08-29 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Mcafee Search vendor "Mcafee" | Common Management Agent Search vendor "Mcafee" for product "Common Management Agent" | 3.5.5.438 Search vendor "Mcafee" for product "Common Management Agent" and version "3.5.5.438" | - |
Affected
| ||||||
| Mcafee Search vendor "Mcafee" | Common Management Agent Search vendor "Mcafee" for product "Common Management Agent" | 3.5.5.568 Search vendor "Mcafee" for product "Common Management Agent" and version "3.5.5.568" | - |
Affected
| ||||||
| Mcafee Search vendor "Mcafee" | Common Management Agent Search vendor "Mcafee" for product "Common Management Agent" | 3.5.5.577 Search vendor "Mcafee" for product "Common Management Agent" and version "3.5.5.577" | - |
Affected
| ||||||
| Mcafee Search vendor "Mcafee" | Common Management Agent Search vendor "Mcafee" for product "Common Management Agent" | 3.5.5.580 Search vendor "Mcafee" for product "Common Management Agent" and version "3.5.5.580" | - |
Affected
| ||||||
| Mcafee Search vendor "Mcafee" | Common Management Agent Search vendor "Mcafee" for product "Common Management Agent" | 3.5.5.588 Search vendor "Mcafee" for product "Common Management Agent" and version "3.5.5.588" | - |
Affected
| ||||||
| Mcafee Search vendor "Mcafee" | Common Management Agent Search vendor "Mcafee" for product "Common Management Agent" | 3.6.0.438 Search vendor "Mcafee" for product "Common Management Agent" and version "3.6.0.438" | - |
Affected
| ||||||
| Mcafee Search vendor "Mcafee" | Common Management Agent Search vendor "Mcafee" for product "Common Management Agent" | 3.6.0.453 Search vendor "Mcafee" for product "Common Management Agent" and version "3.6.0.453" | - |
Affected
| ||||||
| Mcafee Search vendor "Mcafee" | Common Management Agent Search vendor "Mcafee" for product "Common Management Agent" | 3.6.0.546 Search vendor "Mcafee" for product "Common Management Agent" and version "3.6.0.546" | - |
Affected
| ||||||
| Mcafee Search vendor "Mcafee" | Common Management Agent Search vendor "Mcafee" for product "Common Management Agent" | 3.6.0.569 Search vendor "Mcafee" for product "Common Management Agent" and version "3.6.0.569" | - |
Affected
| ||||||
| Mcafee Search vendor "Mcafee" | Common Management Agent Search vendor "Mcafee" for product "Common Management Agent" | 3.6.0.574 Search vendor "Mcafee" for product "Common Management Agent" and version "3.6.0.574" | - |
Affected
| ||||||
| Mcafee Search vendor "Mcafee" | Common Management Agent Search vendor "Mcafee" for product "Common Management Agent" | 3.6.0.595 Search vendor "Mcafee" for product "Common Management Agent" and version "3.6.0.595" | - |
Affected
| ||||||
| Mcafee Search vendor "Mcafee" | Common Management Agent Search vendor "Mcafee" for product "Common Management Agent" | 3.6.0.603 Search vendor "Mcafee" for product "Common Management Agent" and version "3.6.0.603" | - |
Affected
| ||||||