SB2018121216 - Multiple vulnerabilities in agent

Description

This security bulletin contains information about 4 secuirty vulnerabilities.

1) Resource exhaustion (CVE-ID: CVE-2018-6707)

The vulnerability allows a local authenticated user to execute arbitrary code.

Denial of Service through Resource Depletion vulnerability in the agent in non-Windows McAfee Agent (MA) 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to cause DoS, unexpected behavior, or potentially unauthorized code execution via knowledge of the internal trust mechanism.

2) Input validation error (CVE-ID: CVE-2018-6706)

The vulnerability allows a remote non-authenticated attacker to manipulate data.

Insecure handling of temporary files in non-Windows McAfee Agent 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows an Unprivileged User to introduce custom paths during agent installation in Linux via unspecified vectors.

3) Input validation error (CVE-ID: CVE-2018-6705)

The vulnerability allows a local authenticated user to execute arbitrary code.

Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.

4) Input validation error (CVE-ID: CVE-2018-6704)

The vulnerability allows a local authenticated user to execute arbitrary code.

Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.

Remediation

Install update from vendor's website.

References

• http://www.securityfocus.com/bid/106307
• https://kc.mcafee.com/corporate/index?page=content&id=SB10260
• http://www.securityfocus.com/bid/106328
• https://kc.mcafee.com/corporate/index?page=content&id=SB10259