McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, accesses files with the privileges of the root user, which allows remote authenticated users to bypass intended permission settings by requesting a file.
References
Link | Resource |
---|---|
https://kc.mcafee.com/corporate/index?page=content&id=SB10020 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:15:33
Updated: 2022-10-03T16:15:33
Reserved: 2022-10-03T00:00:00
Link: CVE-2012-4586
JSON object: View
NVD Information
Status : Analyzed
Published: 2012-08-22T10:42:04.930
Modified: 2012-08-22T17:55:25.883
Link: CVE-2012-4586
JSON object: View
Redhat Information
No data.
CWE