CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-8772

McPvDrv.sys 4.6.111.0 in McAfee File Lock 5.x in McAfee Total Protection allows local users to obtain sensitive information from kernel memory or cause a denial of service (system crash) via a large VERIFY_INFORMATION.Length value in an IOCTL_DISK_VERIFY ioctl call.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.7%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 8.5

References

http://seclists.org/fulldisclosure/2016/Jan/90
https://www.nettitude.co.uk/mcafee-file-lock-driver-kernel-memory-leak/
http://seclists.org/fulldisclosure/2016/Jan/90
https://www.nettitude.co.uk/mcafee-file-lock-driver-kernel-memory-leak/

Products affected by CVE-2015-8772

Mcafee » File Lock » Version: 5.0

cpe:2.3:a:mcafee:file_lock:5.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-8772

Products

Pricing

Contact Us