Buffer overflow in DLP Endpoint for Windows
CVE-2019-3634

4.4MEDIUM

Key Information:

Vendor: Mcafee, Llc
Status: Data Loss Prevention (dlpe) For Windows
Vendor: CVE Published:; 21 August 2019

🔔 Create Mcafee, Llc Vulnerability Alert

What is CVE-2019-3634?

Buffer overflow in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.2.8 allows local user to cause the Windows operating system to "blue screen" via an encrypted message sent to DLPe which when decrypted results in DLPe reading unallocated memory.

Affected Version(s)

Data Loss Prevention (DLPe) for Windows 11.x < 11.3.2.8

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Aug 21, 2019
Vulnerability Reserved
Jan 3, 2019

JSON