CVE-2006-3961

Currently unrated

Key Information:

Vendor: Mcafee
Status: Privacy Service; Spamkiller; Internet Security Suite; Virusscan
Vendor: CVE Published:; 1 August 2006

Summary

Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted attackers to execute arbitrary commands via long string parameters, which are later used in vsprintf.

References

http://www.securityfocus.com/bid/19265

vdb-entryx_refsource_BID

http://www.eeye.com/html/research/upcoming/20060719.html

x_refsource_MISC

http://securitytracker.com/id?1016614

vdb-entryx_refsource_SECTRACK

EPSS Score

82% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 1, 2006
Vulnerability Reserved
Aug 1, 2006