HTTP: McAfee ePolicy Orchestrator DataChannel GUID SQL Injection
This signature detects attempts to exploit a known vulnerability against McAfee ePolicy Orchestrator, application. A successful attack can lead to command injection and arbitrary code execution.
Extended Description
SQL injection vulnerability in core services in Intel Security McAfee ePolicy Orchestrator (ePO) 5.3.2 and earlier and 5.1.3 and earlier allows attackers to alter a SQL query, which can result in disclosure of information within the database or impersonation of an agent without authentication via a specially crafted HTTP post.
Affected Products
Mcafee epolicy_orchestrator
Short Name
HTTP:SQL:CVE-2016-8027-SQLI
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2016-8027 DataChannel GUID Injection McAfee Orchestrator SQL bid:95981 ePolicy
Release Date
03/13/2017
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3337
False Positive
Unknown
Vendors
Mcafee
CVSS Score
7.5