CVE-2007-2584

McAfee SecurityCenter <6.0.25, <7.2.147 - Buffer Overflow

Title source: llm

Description

Buffer overflow in the IsOldAppInstalled function in the McSubMgr.McSubMgr Subscription Manager ActiveX control (MCSUBMGR.DLL) in McAfee SecurityCenter before 6.0.25 and 7.x before 7.2.147 allows remote attackers to execute arbitrary code via a crafted argument.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Jambalaya · cremotewindows

https://www.exploit-db.com/exploits/3893

View Code ZIP pw:eip

References (9)

[Third Party Advisory, VDB Entry] http://osvdb.org/35874

[Patch, Vendor Advisory] http://secunia.com/advisories/25173

[Various Sources] http://ts.mcafeehelp.com/faq3.asp?docid=419189

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/23888

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/34179

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/23909

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1018028

[Third Party Advisory] http://www.vupen.com/english/advisories/2007/1717

[Third Party Advisory] http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=528

Scores

EPSS 0.3511

EPSS Percentile 97.1%

Details

Status published

Products (10)

mcafee/security_center 4.3

mcafee/security_center 6.0

mcafee/security_center 6.0.22

mcafee/security_center 7.0

mcafee/security_center 7.1

mcafee/security_center 7.2

mcafee/securitycenter_agent 6.0

mcafee/virusscan 10.0.27

mcafee/virusscan 2004

mcafee/virusscan 2005

Published May 10, 2007

Tracked Since Feb 18, 2026