CVE-2016-1715

MEDIUM

McAfee Application Control <6.2.0 - Memory Corruption

Title source: llm

Description

The swin.sys kernel driver in McAfee Application Control (MAC) 6.1.0 before build 706, 6.1.1 before build 404, 6.1.2 before build 449, 6.1.3 before build 441, and 6.2.0 before build 505 on 32-bit Windows platforms allows local users to cause a denial of service (memory corruption and system crash) or gain privileges via a 768 syscall, which triggers a zero to be written to an arbitrary kernel memory location.

References (2)

[Patch, Vendor Advisory] https://kc.mcafee.com/corporate/index?page=content&id=SB10145

[Third Party Advisory] http://www.zerodayinitiative.com/advisories/ZDI-16-007

Scores

CVSS v3 6.6

EPSS 0.0038

EPSS Percentile 59.1%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:H

Classification

CWE

CWE-189

Status draft

Affected Products (6)

microsoft/windows

mcafee/application_control

Timeline

Published Jan 12, 2016

Tracked Since Feb 18, 2026