Buffer overflow in DLP Endpoint for Windows
CVE-2019-3633

4.4MEDIUM

Key Information:

Vendor: Mcafee, Llc
Status: Data Loss Prevention (dlpe) For Windows
Vendor: CVE Published:; 21 August 2019

🔔 Create Mcafee, Llc Vulnerability Alert

What is CVE-2019-3633?

Buffer overflow in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.2.8 allows local user to cause the Windows operating system to "blue screen" via a carefully constructed message sent to DLPe which bypasses DLPe internal checks and results in DLPe reading unallocated memory.

Affected Version(s)

Data Loss Prevention (DLPe) for Windows 11.x < 11.3.2.8

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Aug 21, 2019
Vulnerability Reserved
Jan 3, 2019

JSON