Vulnerability Details CVE-2004-0095
McAfee ePolicy Orchestrator agent allows remote attackers to cause a denial of service (memory consumption and crash) and possibly execute arbitrary code via an HTTP POST request with an invalid Content-Length value, possibly triggering a buffer overflow.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.055
EPSS Ranking 89.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://download.nai.com/products/patches/ePO/v3.1.0/EPO3013.zip
- http://www.osvdb.org/3744
- http://www.securityfocus.com/bid/9476
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14989
- http://download.nai.com/products/patches/ePO/v3.1.0/EPO3013.zip
- http://www.osvdb.org/3744
- http://www.securityfocus.com/bid/9476
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14989
Products affected by CVE-2004-0095
-
cpe:2.3:a:mcafee:epolicy_orchestrator:3.6.0