Remote Code Execution Vulnerability in McAfee SmartFilter Administration
CVE-2012-4599

Currently unrated

Key Information:

Vendor: Mcafee
Status: Smartfilter Administration
Vendor: CVE Published:; 22 August 2012

Summary

The McAfee SmartFilter Administration and SmartFilter Administration Bess Edition are susceptible to a remote code execution vulnerability due to improper authentication measures for the JBoss Remote Method Invocation (RMI) interface. This flaw allows attackers to execute arbitrary code by sending a specially crafted .war file to the server, posing a significant risk to users operating versions prior to 4.2.1.01. Organizations using these products should upgrade to the latest versions to mitigate potential security threats.

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 22, 2012
Vulnerability Reserved
Aug 22, 2012