Privilege Escalation in Intel Security McAfee Application Control
CVE-2016-8009

7.8HIGH

Key Information:

Vendor: Intel
Status: Mcafee Application Control (mac)
Vendor: CVE Published:; 14 March 2017

What is CVE-2016-8009?

A privilege escalation vulnerability exists in Intel Security McAfee Application Control versions 7.0 and 6.x. This flaw allows attackers to exploit an unauthorized IOCTL call, potentially leading to denial of service (DoS), unexpected behavior, and unauthorized code execution. It is crucial for organizations using affected versions to assess their security posture and implement necessary patches or mitigations.

Affected Version(s)

McAfee Application Control (MAC) 7.0 and 6.x versions

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 14, 2017
Vulnerability Reserved
Sep 9, 2016