CVE-2009-5115
McAfee Common Management Agent 3.5.5-3.5.5.588 & 3.6.0-3.6.0.608 - Authenticated Arbitrary File Write
Title source: llmDescription
McAfee Common Management Agent (CMA) 3.5.5 through 3.5.5.588 and 3.6.0 through 3.6.0.608, and McAfee Agent 4.0 before Patch 3, allows remote authenticated users to overwrite arbitrary files by accessing a report-writing ActiveX control COM object.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10002
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/78446
Scores
EPSS
0.0039
EPSS Percentile
60.3%
Details
CWE
CWE-264
Status
published
Products (12)
mcafee/common_management_agent
3.5.5.438
mcafee/common_management_agent
3.5.5.568
mcafee/common_management_agent
3.5.5.577
mcafee/common_management_agent
3.5.5.580
mcafee/common_management_agent
3.5.5.588
mcafee/common_management_agent
3.6.0.438
mcafee/common_management_agent
3.6.0.453
mcafee/common_management_agent
3.6.0.546
mcafee/common_management_agent
3.6.0.569
mcafee/common_management_agent
3.6.0.574
... and 2 more
Published
Aug 22, 2012
Tracked Since
Feb 18, 2026