Intrusion Prevention

McAfee.Common.Management.Agent.DoS

Description

This indicates an attack attempt against a denial of service vulnerability in McAfee Common Management Agent (CMA).
The vulnerability is caused by improper bounds checking before copying user-supplied data into memory buffers.

Affected Products

McAfee ProtectionPilot 1.5
McAfee ProtectionPilot 1.1.1
McAfee ePolicy Orchestrator 3.6.1
McAfee ePolicy Orchestrator 3.6
McAfee ePolicy Orchestrator 3.5
McAfee Common Management Agent (CMA) 3.6.453
McAfee Common Management Agent (CMA) 3.6.438
McAfee Common Management Agent (CMA) 3.5.5.438
McAfee Common Management Agent (CMA) 3.0.6.453

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply patch, available from the website.
https://mysupport.mcafee.com/eservice_enu/start.swe

CVE References

CVE-2006-5274