Short Name |
HTTP:STC:ACTIVEX:MCFE-OVERWRITE |
---|---|
Severity |
Minor |
Recommended |
No |
Category |
HTTP |
Keywords |
McAfee Policy Manager naPolicyManager.dll Unsafe ActiveX Method |
Release Date |
2009/06/26 |
Update Number |
1456 |
Supported Platforms |
idp-4.0.110090709+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to use unsafe ActiveX controls in McAfee Policy Manager. An attacker can create a malicious Web site containing Web pages with dangerous ActiveX controls, which if accessed by a victim, allows the attacker to overwrite files on the victim's system.
McAfee Policy Manager is prone to a vulnerability that lets attackers overwrite files with arbitrary, attacker-controlled content. An attacker can exploit this issue to corrupt or overwrite arbitrary '.ini' files on a victim's computer in the context of the application using the ActiveX control (typically Internet Explorer). Given the nature of this issue, the attacker may also be able to run arbitrary code, but this has not been confirmed.