Vulnerability Details CVE-2015-8577
The Buffer Overflow Protection (BOP) feature in McAfee VirusScan Enterprise before 8.8 Patch 6 allocates memory with Read, Write, Execute (RWX) permissions at predictable addresses on 32-bit platforms when protecting another application, which allows attackers to bypass the DEP and ASLR protection mechanisms via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 3.8%
CVSS Severity
CVSS v2 Score 2.6
References
- http://blog.ensilo.com/the-av-vulnerability-that-bypasses-mitigations
- http://breakingmalware.com/vulnerabilities/sedating-watchdog-abusing-security-products-bypass-mitigations/
- http://www.securityfocus.com/bid/78810
- https://kc.mcafee.com/corporate/index?page=content&id=SB10142
- http://blog.ensilo.com/the-av-vulnerability-that-bypasses-mitigations
- http://breakingmalware.com/vulnerabilities/sedating-watchdog-abusing-security-products-bypass-mitigations/
- http://www.securityfocus.com/bid/78810
- https://kc.mcafee.com/corporate/index?page=content&id=SB10142
Products affected by CVE-2015-8577
-
cpe:2.3:a:mcafee:virusscan_enterprise:-
-
cpe:2.3:a:mcafee:virusscan_enterprise:1.9.0
-
cpe:2.3:a:mcafee:virusscan_enterprise:1.9.1
-
cpe:2.3:a:mcafee:virusscan_enterprise:1.9.2
-
cpe:2.3:a:mcafee:virusscan_enterprise:2.0.0
-
cpe:2.3:a:mcafee:virusscan_enterprise:2.0.3
-
cpe:2.3:a:mcafee:virusscan_enterprise:7.1.0
-
cpe:2.3:a:mcafee:virusscan_enterprise:8.0i
-
cpe:2.3:a:mcafee:virusscan_enterprise:8.5i
-
cpe:2.3:a:mcafee:virusscan_enterprise:8.6.0
-
cpe:2.3:a:mcafee:virusscan_enterprise:8.7.0
-
cpe:2.3:a:mcafee:virusscan_enterprise:8.7.00003
-
cpe:2.3:a:mcafee:virusscan_enterprise:8.7.00004
-
cpe:2.3:a:mcafee:virusscan_enterprise:8.7i
-
cpe:2.3:a:mcafee:virusscan_enterprise:8.8
-
cpe:2.3:a:mcafee:virusscan_enterprise:8.8.0