HTTP: McAfee Policy Manager naPolicyManager.dll Unsafe ActiveX Method
This signature detects attempts to use unsafe ActiveX controls in McAfee Policy Manager. An attacker can create a malicious Web site containing Web pages with dangerous ActiveX controls, which if accessed by a victim, allows the attacker to overwrite files on the victim's system.
Extended Description
McAfee Policy Manager is prone to a vulnerability that lets attackers overwrite files with arbitrary, attacker-controlled content. An attacker can exploit this issue to corrupt or overwrite arbitrary '.ini' files on a victim's computer in the context of the application using the ActiveX control (typically Internet Explorer). Given the nature of this issue, the attacker may also be able to run arbitrary code, but this has not been confirmed.
Affected Products
Mcafee policy_manager
References
BugTraq: 35404
Short Name
HTTP:STC:ACTIVEX:MCFE-OVERWRITE
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
ActiveX Manager McAfee Method Policy Unsafe bid:35404 naPolicyManager.dll
Release Date
06/26/2009
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Mcafee