McAfee Livesafe CVE-2017-3898 Input Validation Bypass Vulnerability

description-logoDescription

A man-in-the-middle attack vulnerability in the non-certificate-based authentication mechanism in McAfee LiveSafe (MLS) versions prior to 16.0.3 allows network attackers to modify the Windows registry value associated with the McAfee update via the HTTP backend-response.

affected-products-logoAffected Applications

McAfee Livesafe

CVE References

CVE-2017-3898