APP: McAfee ePolicy Orchestrator UID Multiple SQL Injection
This signature detects attempts to exploit a known vulnerability against McAfee ePolicy Orchestrator. A successful attack can lead to arbitrary code execution.
Extended Description
Multiple SQL injection vulnerabilities in McAfee ePolicy Orchestrator 4.6.6 and earlier, and the ePolicy Orchestrator (ePO) extension for McAfee Agent (MA) 4.5 and 4.6, allow remote authenticated users to execute arbitrary SQL commands via the uid parameter to (1) core/showRegisteredTypeDetails.do and (2) EPOAGENTMETA/DisplayMSAPropsDetail.do, a different vulnerability than CVE-2013-0140.
Affected Products
Mcafee epolicy_orchestrator
References
CVE: CVE-2013-4882
Short Name
APP:MCAFEE-EPOLICY-SQLI
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
CVE-2013-4882 Injection McAfee Multiple Orchestrator SQL UID ePolicy
Release Date
08/05/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Mcafee
CVSS Score
6.5