CVE-2014-1473

Currently unrated

Key Information:

Vendor: Mcafee
Status: Vulnerability Manager
Vendor: CVE Published:; 16 January 2014

Summary

Multiple cross-site request forgery (CSRF) vulnerabilities in the Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.5 and earlier allow remote attackers to hijack the authentication of users for requests that modify HTML via unspecified vectors related to the "response web page."

References

http://secunia.com/advisories/56394

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/64795

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1029591

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jan 16, 2014
Vulnerability Reserved
Jan 15, 2014