vulnerability

McAfee Agent: CVE-2020-7279: Mcafee agent and host intrusion prevention update addresses dll search order hijacking vulnerability (SB10320)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	Jun 10, 2020	Aug 11, 2020	Jan 28, 2025

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

Jun 10, 2020

Added

Aug 11, 2020

Modified

Jan 28, 2025

Description

DLL Search Order Hijacking Vulnerability in the installer component of McAfee Host Intrusion Prevention System (Host IPS) for Windows prior to 8.0.0 Patch 15 Update allows attackers with local access to execute arbitrary code via execution from a compromised folder.

Solutions

mcafee-agent-upgrade-5-5-4-266mcafee-agent-upgrade-5-6-4-151

References

CVE-2020-7279
https://attackerkb.com/topics/CVE-2020-7279
MCAFEE-SB10320

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today