Product:

Epolicy_orchestrator

(Mcafee)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 86
Date Id Summary Products Score Patch Annotated
2004-06-14 CVE-2004-0038 McAfee ePolicy Orchestrator (ePO) 2.5.1 Patch 13 and 3.0 SP2a Patch 3 allows remote attackers to execute arbitrary commands via certain HTTP POST requests to the spipe/file handler on ePO TCP port 81. Epolicy_orchestrator N/A
2003-08-27 CVE-2003-0616 Format string vulnerability in ePO service for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code via a POST request with format strings in the computerlist parameter, which are used when logging a failed name resolution. Epolicy_orchestrator N/A
2003-08-27 CVE-2003-0610 Directory traversal vulnerability in ePO agent for McAfee ePolicy Orchestrator 3.0 allows remote attackers to read arbitrary files via a certain HTTP request. Epolicy_orchestrator N/A
2003-08-27 CVE-2003-0149 Heap-based buffer overflow in ePO agent for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code via a POST request containing long parameters. Epolicy_orchestrator N/A
2003-08-27 CVE-2003-0148 The default installation of MSDE via McAfee ePolicy Orchestrator 2.0 through 3.0 allows attackers to execute arbitrary code via a series of steps that (1) obtain the database administrator username and encrypted password in a configuration file from the ePO server using a certain request, (2) crack the password due to weak cryptography, and (3) use the password to pass commands through xp_cmdshell. Epolicy_orchestrator N/A
2003-04-11 CVE-2002-0690 Format string vulnerability in McAfee Security ePolicy Orchestrator (ePO) 2.5.1 allows remote attackers to execute arbitrary code via an HTTP GET request with a URI containing format strings. Epolicy_orchestrator N/A