SB10193 - consumer and corporate products - Maliciously misconfigured registry vulnerability
CVE-2017-4028

5MEDIUM

Key Information:

Vendor: Mcafee
Status: Mcafee Anti-virus Plus (avp); Mcafee Endpoint Security (ens); Mcafee Host Intrusion Prevention (host Ips); Mcafee Internet Security (mis)
Vendor: CVE Published:; 3 April 2018

What is CVE-2017-4028?

Maliciously misconfigured registry vulnerability in all Microsoft Windows products in McAfee consumer and corporate products allows an administrator to inject arbitrary code into a debugged McAfee process via manipulation of registry parameters.

Affected Version(s)

McAfee Anti-Virus Plus (AVP) 170329 < 29 Mar 2017

McAfee Endpoint Security (ENS) 10.2 < 10.2 DAT V3 DAT 2932.0

McAfee Host Intrusion Prevention (Host IPS) 8.0 < 8.0 Patch 9 Hotfix 1188590

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/97958

vdb-entryx_refsource_BID

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 3, 2018
Vulnerability Reserved
Dec 26, 2016

Mcafee

What is CVE-2017-4028?

Affected Version(s)

References

CVSS V3.1

Timeline