Remote Code Execution Vulnerability in McAfee Virtual Technician ActiveX Control
CVE-2012-4598

Currently unrated

Key Information:

Vendor: Mcafee
Status: Mcafee Virtual Technician
Vendor: CVE Published:; 22 August 2012

Summary

An unaddressed vulnerability in the ActiveX control of McAfee Virtual Technician permits attackers to exploit crafted websites, leading to arbitrary code execution or triggering denial of service conditions, such as crashes in Internet Explorer. This situation arises in versions prior to 6.4 and underscores the necessity for users to keep their software updated and implement robust security practices.

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

EPSS Score

70% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 22, 2012