CVE-2013-4882
N/A
N/A
Summary
Multiple SQL injection vulnerabilities in McAfee ePolicy Orchestrator 4.6.6 and earlier, and the ePolicy Orchestrator (ePO) extension for McAfee Agent (MA) 4.5 and 4.6, allow remote authenticated users to execute arbitrary SQL commands via the uid parameter to (1) core/showRegisteredTypeDetails.do and (2) EPOAGENTMETA/DisplayMSAPropsDetail.do, a different vulnerability than CVE-2013-0140.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://kc.mcafee.com/corporate/index?page=content&id=SB10043
- http://www.securityfocus.com/archive/1/527228
- http://www.securitytracker.com/id/1028803
References
- https://kc.mcafee.com/corporate/index?page=content&id=SB10043
- http://www.securityfocus.com/archive/1/527228
- http://www.securitytracker.com/id/1028803
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.