CVE-2004-1908

Mcafee FreeScan <CoMcFreeScan.1 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-1908. PoCs published by S G Masood.

AI-analyzed exploit summary This exploit leverages a COM object vulnerability in McAfee FreeScan to disclose sensitive system information by accessing special folder locations without proper validation. The PoC uses VBScript to interact with the COM object and retrieve paths to various system directories.

Description

McFreeScan.CoMcFreeScan.1 ActiveX object in Mcafee FreeScan allows remote attackers to obtain sensitive information via the GetSpecialFolderLocation function with certain parameters.

Exploits (1)

exploitdb WORKING POC VERIFIED
by S G Masood · textremotewindows
https://www.exploit-db.com/exploits/23926

This exploit leverages a COM object vulnerability in McAfee FreeScan to disclose sensitive system information by accessing special folder locations without proper validation. The PoC uses VBScript to interact with the COM object and retrieve paths to various system directories.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: McAfee FreeScan (McFreeScan.CoMcFreeScan.1 COM object)
No auth needed
Prerequisites: Victim must have McAfee FreeScan installed · COM object must be accessible via browser
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (7)

Core 7
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=108137545531496&w=2
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=108136872711898&w=2
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/10077
Mailing List mailing-list x_refsource_fulldisc
http://lists.grok.org.uk/pipermail/full-disclosure/2004-April/019891.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15782
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/11313

Scores

EPSS 0.0339
EPSS Percentile 87.3%

Details

Status published
Products (1)
mcafee/freescan
Published Dec 31, 2004
Tracked Since Feb 18, 2026