Intrusion Prevention

McAfee.McSubMgr.DLL.ActiveX.Control.Buffer.Overflow

Description

A buffer overflow vulnerability has been identified in the McAfee Subscription Manager (MCSUBMGR.DLL) ActiveX control. The exploit is triggered when the IsOldAppInstalled() method processes an overly long string argument, allowing remote attackers to execute arbitrary code.
An attacker can exploit this vulnerability by hosting a malicious web-site and enticing users to visit it.

Affected Products

McAfee VirusScan 10.0.27
McAfee SecurityCenter Agent 6.0
McAfee SecurityCenter 6.0.22
McAfee SecurityCenter 7.0
McAfee SecurityCenter 6.0
McAfee SecurityCenter 4.3

Impact

Arbitrary code execution.

Recommended Actions

The vendor has released patches and upgrades to address this issue. Please apply them.

CVE References

CVE-2007-2584