This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Mcafee First view 2012-08-22
Product Change Control Last view 2017-03-14
Version Type Application
Update  
Edition  
Language  
Sofware Edition  
Target Software  
Target Hardware  
Other  

Activity : Overall

COMMON PLATFORM ENUMERATION: Repartition per Version

CPE Name Affected CVE
cpe:2.3:a:mcafee:change_control:5.1.1:*:*:*:*:*:*:* 3
cpe:2.3:a:mcafee:change_control:6.0.0:*:*:*:*:*:*:* 3
cpe:2.3:a:mcafee:change_control:5.1.0:*:*:*:*:*:*:* 3
cpe:2.3:a:mcafee:change_control:5.1.2:*:*:*:*:*:*:* 3

Related : CVE

  Date Alert Description
5.5 2017-03-14 CVE-2013-7461

A write protection and execution bypass vulnerability in McAfee (now Intel Security) Change Control (MCC) 6.1.0 for Linux and earlier allows authenticated users to change files that are part of write protection rules via specific conditions.
5.5 2017-03-14 CVE-2013-7460

A write protection and execution bypass vulnerability in McAfee (now Intel Security) Application Control (MAC) 6.1.0 for Linux and earlier allows authenticated users to change binaries that are part of the Application Control whitelist and allows execution of binaries via specific conditions.
5 2012-08-22 CVE-2012-4593

McAfee Application Control and Change Control 5.1.x and 6.0.0 do not enforce an intended password requirement in certain situations involving attributes of the password file, which allows local users to bypass authentication by executing a command.

CWE : Common Weakness Enumeration

%idName
66% (2) CWE-284 Access Control (Authorization) Issues
33% (1) CWE-264 Permissions, Privileges, and Access Controls