McAfee.Remediation.Client.Enginecom.Dll.ActiveX.Access
Description
This indicates an attempt to exploit a code execution vulnerability in McAfee Remediation Agent.
The vulnerability is located in the "enginecom.dll" ActiveX control through misuse of the "DeleteSnapshot" method. It may allow remote attackers to execute arbitrary code in vulnerable systems.
Affected Products
McAfee Remediation Agent 4.5.0.41
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Set the kill bit for the affected ActiveX control.
The progid of the affected ActiveX control is Enginecom.imagineLANEngine.1
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2020-07-22 | 15.892 | Sig Added |