Vulnerability Description
Integer underflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary code via a crafted UDP packet, which causes stack corruption.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mcafee | E-Business Server | 3.5 |
| Mcafee | Protectionpilot | 1.1.1 |
References
- http://secunia.com/advisories/26029Vendor Advisory
- http://www.iss.net/threats/269.html
- http://www.osvdb.org/36098
- http://www.securityfocus.com/bid/24863
- http://www.securitytracker.com/id?1018363
- http://www.vupen.com/english/advisories/2007/2498
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31162
- https://knowledge.mcafee.com/article/761/613364_f.SAL_Public.html
- http://secunia.com/advisories/26029Vendor Advisory
- http://www.iss.net/threats/269.html
- http://www.osvdb.org/36098
- http://www.securityfocus.com/bid/24863
- http://www.securitytracker.com/id?1018363
- http://www.vupen.com/english/advisories/2007/2498
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31162
FAQ
What is CVE-2006-5271?
CVE-2006-5271 is a vulnerability with a CVSS score of 7.6 (HIGH). Integer underflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and earlier allows remote attackers to execute arbitrary ...
How severe is CVE-2006-5271?
CVE-2006-5271 has been rated HIGH with a CVSS base score of 7.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5271?
Check the references section above for vendor advisories and patch information. Affected products include: Mcafee E-Business Server, Mcafee Protectionpilot.