Vulnerability Description
Buffer overflow in the IsOldAppInstalled function in the McSubMgr.McSubMgr Subscription Manager ActiveX control (MCSUBMGR.DLL) in McAfee SecurityCenter before 6.0.25 and 7.x before 7.2.147 allows remote attackers to execute arbitrary code via a crafted argument.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mcafee | Security Center | 4.3 |
| Mcafee | Securitycenter Agent | 6.0 |
| Mcafee | Virusscan | 10.0.27 |
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=528
- http://osvdb.org/35874
- http://secunia.com/advisories/25173PatchVendor Advisory
- http://ts.mcafeehelp.com/faq3.asp?docid=419189
- http://www.securityfocus.com/bid/23888
- http://www.securityfocus.com/bid/23909
- http://www.securitytracker.com/id?1018028
- http://www.vupen.com/english/advisories/2007/1717
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34179
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=528
- http://osvdb.org/35874
- http://secunia.com/advisories/25173PatchVendor Advisory
- http://ts.mcafeehelp.com/faq3.asp?docid=419189
- http://www.securityfocus.com/bid/23888
- http://www.securityfocus.com/bid/23909
FAQ
What is CVE-2007-2584?
CVE-2007-2584 is a vulnerability with a CVSS score of 10.0 (HIGH). Buffer overflow in the IsOldAppInstalled function in the McSubMgr.McSubMgr Subscription Manager ActiveX control (MCSUBMGR.DLL) in McAfee SecurityCenter before 6.0.25 and 7.x before 7.2.147 allows remo...
How severe is CVE-2007-2584?
CVE-2007-2584 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-2584?
Check the references section above for vendor advisories and patch information. Affected products include: Mcafee Security Center, Mcafee Securitycenter Agent, Mcafee Virusscan.