virus logo Intrusion Prevention

McAfee.Remediation.Client.Enginecom.Dll.ActiveX.Access

description-logoDescription

This indicates an attempt to exploit a code execution vulnerability in McAfee Remediation Agent.
The vulnerability is located in the "enginecom.dll" ActiveX control through misuse of the "DeleteSnapshot" method. It may allow remote attackers to execute arbitrary code in vulnerable systems.

affected-products-logoAffected Products

McAfee Remediation Agent 4.5.0.41

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Set the kill bit for the affected ActiveX control.
The progid of the affected ActiveX control is Enginecom.imagineLANEngine.1

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-07-22 15.892 Sig Added
ID 17849
Created Nov 03, 2009
Updated Dec 01, 2020
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Windows
Affected App Other