Command Execution Vulnerability in McAfee Email Gateway 7.6
CVE-2013-7104

Currently unrated

Key Information:

Vendor: Mcafee
Status: Email Gateway
Vendor: CVE Published:; 14 December 2013

What is CVE-2013-7104?

The McAfee Email Gateway 7.6 contains a command execution vulnerability that permits remote authenticated administrators to execute arbitrary commands by manipulating the value attribute within Command or Script XML elements. This flaw can be exploited in conjunction with other vulnerabilities, such as CVE-2013-7092, potentially enabling remote attackers to gain further control over the affected system.

References

http://packetstormsecurity.com/files/124277/McAfee-Email-...

x_refsource_MISC

http://osvdb.org/100581

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/64150

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 14, 2013
Vulnerability Reserved
Dec 14, 2013

Mcafee

What is CVE-2013-7104?

References

Timeline