Vulnerability Details CVE-2007-2584
Buffer overflow in the IsOldAppInstalled function in the McSubMgr.McSubMgr Subscription Manager ActiveX control (MCSUBMGR.DLL) in McAfee SecurityCenter before 6.0.25 and 7.x before 7.2.147 allows remote attackers to execute arbitrary code via a crafted argument.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.343
EPSS Ranking 96.7%
CVSS Severity
CVSS v2 Score 10.0
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=528
- http://osvdb.org/35874
- http://secunia.com/advisories/25173
- http://ts.mcafeehelp.com/faq3.asp?docid=419189
- http://www.securityfocus.com/bid/23888
- http://www.securityfocus.com/bid/23909
- http://www.securitytracker.com/id?1018028
- http://www.vupen.com/english/advisories/2007/1717
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34179
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=528
- http://osvdb.org/35874
- http://secunia.com/advisories/25173
- http://ts.mcafeehelp.com/faq3.asp?docid=419189
- http://www.securityfocus.com/bid/23888
- http://www.securityfocus.com/bid/23909
- http://www.securitytracker.com/id?1018028
- http://www.vupen.com/english/advisories/2007/1717
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34179
Products affected by CVE-2007-2584
-
cpe:2.3:a:mcafee:security_center:4.3
-
cpe:2.3:a:mcafee:security_center:6.0
-
cpe:2.3:a:mcafee:security_center:6.0.22
-
cpe:2.3:a:mcafee:security_center:7.0
-
cpe:2.3:a:mcafee:security_center:7.1
-
cpe:2.3:a:mcafee:security_center:7.2
-
cpe:2.3:a:mcafee:securitycenter_agent:6.0
-
cpe:2.3:a:mcafee:virusscan:10.0.27
-
cpe:2.3:a:mcafee:virusscan:2004
-
cpe:2.3:a:mcafee:virusscan:2005