CVE-2017-4028
5
CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:N
Summary
Maliciously misconfigured registry vulnerability in all Microsoft Windows products in McAfee consumer and corporate products allows an administrator to inject arbitrary code into a debugged McAfee process via manipulation of registry parameters.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| McAfee | McAfee Anti-Virus Plus (AVP) | 170329 < 29 Mar 2017 | affected |
| McAfee | McAfee Endpoint Security (ENS) | 10.2 < 10.2 DAT V3 DAT 2932.0 | affected |
| McAfee | McAfee Host Intrusion Prevention (Host IPS) | 8.0 < 8.0 Patch 9 Hotfix 1188590 | affected |
| McAfee | McAfee Internet Security (MIS) | 170329 < 29 Mar 2017 | affected |
| McAfee | McAfee Total Protection (MTP) | 170329 < 29 Mar 2017 | affected |
| McAfee | McAfee Virus Scan Enterprise (VSE) | 8.8 < 8.8 Patch 8/9 Hotfix 1187884 | affected |
Weaknesses
- Maliciously misconfigured registry vulnerability
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.