返回 CVE 瀏覽器

CVE-2007-2584

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0110%

EPSS Percentile18.13th

Published2007年5月10日

Last Modified2026年4月23日

Vulnerability Description

Buffer overflow in the IsOldAppInstalled function in the McSubMgr.McSubMgr Subscription Manager ActiveX control (MCSUBMGR.DLL) in McAfee SecurityCenter before 6.0.25 and 7.x before 7.2.147 allows remote attackers to execute arbitrary code via a crafted argument.

Affected Platforms (CPE)

📦

Mcafee

Security Center

= 4.3

📦

Mcafee

Security Center

= 6.0

📦

Mcafee

Security Center

= 6.0.22

📦

Mcafee

Security Center

= 7.0

📦

Mcafee

Security Center

= 7.1

📦

Mcafee

Security Center

= 7.2

📦

Mcafee

Securitycenter Agent

= 6.0

📦

Mcafee

Virusscan

= 10.0.27

📦

Mcafee

Virusscan

= 2004

📦

Mcafee

Virusscan

= 2005

References & Advisories

🔗 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=528

🔗 http://osvdb.org/35874

🔗 http://secunia.com/advisories/25173

🔗 http://ts.mcafeehelp.com/faq3.asp?docid=419189

🔗 http://www.securityfocus.com/bid/23888

🔗 http://www.securityfocus.com/bid/23909

🔗 http://www.securitytracker.com/id?1018028

🔗 http://www.vupen.com/english/advisories/2007/1717

相關漏洞威脅

CVE-2008-660210.0

Unspecified vulnerability in Download Center Lite before 2.1 has unknown impact and attack vectors related to "A minor security fi...

CVE-2009-142910.0

The Intel LANDesk Common Base Agent (CBA) in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); S...

CVE-2018-124639.8

An XML external entity (XXE) vulnerability in Fortify Software Security Center (SSC), version 17.1, 17.2, 18.1 allows remote unaut...

CVE-2018-04489.8

A vulnerability in the identity management service of Cisco Digital Network Architecture (DNA) Center could allow an unauthenticat...