CVE-2012-4593
McAfee Application Control and Change Control <6.0.0 - Auth Bypass
Title source: llmDescription
McAfee Application Control and Change Control 5.1.x and 6.0.0 do not enforce an intended password requirement in certain situations involving attributes of the password file, which allows local users to bypass authentication by executing a command.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10023
Scores
EPSS
0.0023
EPSS Percentile
46.0%
Details
CWE
CWE-264
Status
published
Products (8)
mcafee/application_control
5.1.0
mcafee/application_control
5.1.1
mcafee/application_control
5.1.2
mcafee/application_control
6.0.0
mcafee/change_control
5.1.0
mcafee/change_control
5.1.1
mcafee/change_control
5.1.2
mcafee/change_control
6.0.0
Published
Aug 22, 2012
Tracked Since
Feb 18, 2026