CVE-2008-1855

McAfee CMA 3.6.0.574 - Memory Corruption

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-1855. PoCs published by muts.

AI-analyzed exploit summary This exploit targets a denial-of-service (DoS) vulnerability in McAfee EPO 4.0 by sending malformed HTTP requests with oversized buffers to the FrameworkService.exe on port 8081. The repeated requests aim to crash the service by overwhelming it.

Description

FrameworkService.exe in McAfee Common Management Agent (CMA) 3.6.0.574 Patch 3 and earlier, as used by ePolicy Orchestrator (ePO) and ProtectionPilot (PrP), allows remote attackers to corrupt memory and cause a denial of service (CMA Framework service crash) via a long invalid method in requests for the /spin//AVClient//AVClient.csp URI, a different vulnerability than CVE-2006-5274.

Exploits (1)

exploitdb WORKING POC VERIFIED

by muts · pythondoswindows

https://www.exploit-db.com/exploits/5343

View Code ZIP pw:eip

This exploit targets a denial-of-service (DoS) vulnerability in McAfee EPO 4.0 by sending malformed HTTP requests with oversized buffers to the FrameworkService.exe on port 8081. The repeated requests aim to crash the service by overwhelming it.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: McAfee EPO 4.0

No auth needed

Prerequisites: Network access to the target's port 8081

MITRE ATT&CK