CVE-2015-0922

Mcafee Epolicy Orchestrator < 4.6.8 - Information Disclosure

Title source: rule

Description

McAfee ePolicy Orchestrator (ePO) before 4.6.9 and 5.x before 5.1.2 uses the same secret key across different customers' installations, which allows attackers to obtain the administrator password by leveraging knowledge of the encrypted password.

Exploits (1)

metasploit WORKING POC

rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/mcafee_epo_xxe.rb

View Code ZIP pw:eip

References (8)

[Exploit] http://packetstormsecurity.com/files/129827/McAfee-ePolicy-Orchestrator-Authenticated-XXE-Credential-Exposure.html

[Mailing List] http://seclists.org/fulldisclosure/2015/Jan/37

[Exploit] http://www.securityfocus.com/bid/72298

[Various Sources] https://gist.github.com/brandonprry/692e553975bf29aeaf2c

[Patch, Vendor Advisory] https://kc.mcafee.com/corporate/index?page=content&id=SB10095

[Mailing List] http://seclists.org/fulldisclosure/2015/Jan/8

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/99949

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1031519

Scores

EPSS 0.4575

EPSS Percentile 97.6%

Details

CWE

CWE-200

Status published

Products (5)

mcafee/epolicy_orchestrator 5.0.0

mcafee/epolicy_orchestrator 5.0.1

mcafee/epolicy_orchestrator 5.1.0

mcafee/epolicy_orchestrator 5.1.1

mcafee/epolicy_orchestrator < 4.6.8

Published Jan 09, 2015

Tracked Since Feb 18, 2026