Authentication Bypass Vulnerability in McAfee Email and Web Security Products
CVE-2012-4595

Currently unrated

Key Information:

Vendor: Mcafee
Status: Email And Web Security; Email Gateway
Vendor: CVE Published:; 22 August 2012

Summary

The vulnerability allows remote attackers to bypass authentication mechanisms in McAfee Email and Web Security and Email Gateway products, potentially giving them access to sensitive administrative functions. Attackers can exploit unspecified vectors to obtain an admin session ID, posing significant risks to affected systems. Users are urged to apply security patches promptly to safeguard their environments.

References

http://www.securitytracker.com/id?1027444

vdb-entryx_refsource_SECTRACK

https://exchange.xforce.ibmcloud.com/vulnerabilities/77977

vdb-entryx_refsource_XF

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

Timeline

Vulnerability published
Aug 22, 2012
Vulnerability Reserved
Aug 22, 2012