vulnerability

McAfee Agent: CVE-2016-3984: Protected resource access bypass vulnerability resolved in multiple products for microsoft windows (SB10151)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:L/AC:L/Au:N/C:N/I:P/A:P)	Apr 8, 2016	Aug 11, 2020	Aug 16, 2022

Severity

CVSS

(AV:L/AC:L/Au:N/C:N/I:P/A:P)

Published

Apr 8, 2016

Added

Aug 11, 2020

Modified

Aug 16, 2022

Description

The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) before 1.1.0.161, Agent (MA) 5.x before 5.0.2 Hotfix 1110392 (5.0.2.333), Data Exchange Layer 2.x (DXL) before 2.0.1.140.1, Data Loss Prevention Endpoint (DLPe) 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Device Control (MDC) 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Endpoint Security (ENS) 10.x before 10.1, Host Intrusion Prevention Service (IPS) 8.0 before 8.0.0.3624, and VirusScan Enterprise (VSE) 8.8 before P7 (8.8.0.1528) on Windows allows local administrators to bypass intended self-protection rules and disable the antivirus engine by modifying registry keys.

Solution(s)

mcafee-agent-upgrade-5-0-2-333mcafee-agent-upgrade-5-0-3-272

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today