Authentication Bypass in McAfee Application Control and Change Control
CVE-2012-4593

Currently unrated

Key Information:

Vendor: Mcafee
Status: Application Control; Change Control
Vendor: CVE Published:; 22 August 2012

Summary

The McAfee Application Control and Change Control products fail to adequately enforce password requirements due to specific attributes in the password file. This oversight allows local users to effectively bypass authentication controls and execute commands without proper authorization, potentially compromising system integrity and data security.

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 22, 2012