Test ID:	1.3.6.1.4.1.25623.1.0.804250
Category:	General
Title:	McAfee Vulnerability Manager Multiple Vulnerabilities
Summary:	McAfee Vulnerability Manager is prone to multiple vulnerabilities.
Description:	Summary: McAfee Vulnerability Manager is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - Improper validation of user supplied input passed to 'cert_cn' parameter. - Other multiple flaws are caused by improper validation of user-supplied input. Vulnerability Impact: Successful exploitation will allow a local attacker to steal the victim's cookie-based authentication credentials. Affected Software/OS: McAfee Vulnerability Manager 7.5.5 and earlier. Solution: Vendor has released a patch to fix this issue, please the references for more info. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-1472 BugTraq ID: 64795 http://www.securityfocus.com/bid/64795 http://osvdb.org/101940 http://www.securitytracker.com/id/1029591 http://secunia.com/advisories/56394 XForce ISS Database: mcafee-vm-unspec-xss(90244) https://exchange.xforce.ibmcloud.com/vulnerabilities/90244 Common Vulnerability Exposure (CVE) ID: CVE-2014-1473 http://osvdb.org/101939 XForce ISS Database: mcafee-vm-unspec-csrf(90245) https://exchange.xforce.ibmcloud.com/vulnerabilities/90245 Common Vulnerability Exposure (CVE) ID: CVE-2013-5094 BugTraq ID: 58401 http://www.securityfocus.com/bid/58401 http://asheesh2000.blogspot.com/2013/08/mcafee-vulnerability-manager-75-cross.html http://packetstormsecurity.com/files/120721/McAfee-Vulnerability-Manager-7.5-Cross-Site-Scripting.html http://www.tenable.com/plugins/index.php?view=single&id=65738 https://kc.mcafee.com/corporate/index?page=content&id=KB77772
Copyright	Copyright (C) 2014 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.