CVE-2009-5115

Published Aug 22, 2012

Last updated 7 years ago

CVSS info 6.5

Overview

Description: McAfee Common Management Agent (CMA) 3.5.5 through 3.5.5.588 and 3.6.0 through 3.6.0.608, and McAfee Agent 4.0 before Patch 3, allows remote authenticated users to overwrite arbitrary files by accessing a report-writing ActiveX control COM object.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.5
Impact score: 6.4
Exploitability score: 8
Vector string: AV:N/AC:L/Au:S/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-264

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mcafee:common_management_agent:3.5.5.438:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E2A376DB-CC55-434C-AD61-8DF2B5DE7647"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:common_management_agent:3.5.5.568:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE95EBCC-6268-4605-98D2-92EFFCA38DAC"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:common_management_agent:3.5.5.577:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F0885BB5-7030-498E-B48D-CC14F8741AEF"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:common_management_agent:3.5.5.580:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "341EA9D7-C82F-41AC-88BA-69273226E17B"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:common_management_agent:3.5.5.588:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BDA5C527-5770-4B91-A2A5-0C96CE4C91B5"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:common_management_agent:3.6.0.438:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C5A9ECA8-BE32-4A05-9E65-3C8F8A34227D"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:common_management_agent:3.6.0.453:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "857A25D8-06F5-4B3A-A6FA-71B3472961A7"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:common_management_agent:3.6.0.546:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "33587225-BE54-45A1-97FD-2274673F9AE3"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:common_management_agent:3.6.0.569:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3D30ADB-7A7C-413D-8D87-5AAF7399C43B"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:common_management_agent:3.6.0.574:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "61BB94AF-676E-465B-AEFB-019EEFA3EACF"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:common_management_agent:3.6.0.595:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1B57AB6D-0C75-4191-B375-4EA832352BC5"
          },
          {
            "criteria": "cpe:2.3:a:mcafee:common_management_agent:3.6.0.603:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3CFAE871-654E-46AE-BD15-04790F97E0B2"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References