Arbitrary File Read Vulnerability in McAfee Email and Web Security Products
CVE-2012-4585

Currently unrated

Key Information:

Vendor: Mcafee
Status: Email And Web Security; Email Gateway
Vendor: CVE Published:; 22 August 2012

Summary

The vulnerability exists in McAfee Email and Web Security and Email Gateway products, which allows remote authenticated users to read arbitrary files. Through a crafted URL, users can potentially access sensitive files without proper authorization. This flaw raises significant security concerns and highlights the importance of ensuring that software patches are applied promptly to mitigate such risks.

References

http://archives.neohapsis.com/archives/bugtraq/2012-03/01...

mailing-listx_refsource_BUGTRAQ

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

Timeline

Vulnerability published
Aug 22, 2012
Vulnerability Reserved
Aug 22, 2012