CVE-2006-5273
McAfee Common Management Agent < 3.6.0.453 - Remote Code Execution via Crafted Packet
Title source: llmDescription
Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 through 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 through 3.6.0.453 allows remote attackers to execute arbitrary code via a crafted packet.
References (9)
Core 9
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/31164
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2498
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1018363
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/26029
Various Sources x_refsource_misc
http://www.nessus.org/plugins/index.php?view=single&id=25702
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/36100
Third Party Advisory third-party-advisory
x_refsource_iss
http://www.iss.net/threats/269.html
Patch x_refsource_confirm
https://knowledge.mcafee.com/article/763/613366_f.SAL_Public.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/24863
Scores
EPSS
0.0925
EPSS Percentile
92.8%
Details
Status
published
Products (6)
mcafee/common_management_agent
3.6.0.438
mcafee/common_management_agent
< 3.6.0.453
mcafee/e-business_server
3.5
mcafee/e-business_server
3.6.1
mcafee/protectionpilot
1.1.1 (2 CPE variants)
mcafee/protectionpilot
1.5.0
Published
Jul 12, 2007
Tracked Since
Feb 18, 2026