CVE-2009-5115

Published: Aug 22, 2012Modified: Apr 29, 2026

6.5

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitability: 8.0 / Impact: 6.4

Source: NVD

Description

McAfee Common Management Agent (CMA) 3.5.5 through 3.5.5.588 and 3.6.0 through 3.6.0.608, and McAfee Agent 4.0 before Patch 3, allows remote authenticated users to overwrite arbitrary files by accessing a report-writing ActiveX control COM object.

Affected (12)

Products: Mcafee: Common Management Agent

Mcafee

1 product

Common Management Agent

Configuration A

12 vulnerable

Vulnerable Software	Affected Versions
Mcafee Common Management Agent	Version 3.5.5.438
Mcafee Common Management Agent	Version 3.5.5.568
Mcafee Common Management Agent	Version 3.5.5.577
Mcafee Common Management Agent	Version 3.5.5.580
Mcafee Common Management Agent	Version 3.5.5.588
Mcafee Common Management Agent	Version 3.6.0.438
Mcafee Common Management Agent	Version 3.6.0.453
Mcafee Common Management Agent	Version 3.6.0.546
Mcafee Common Management Agent	Version 3.6.0.569
Mcafee Common Management Agent	Version 3.6.0.574
Mcafee Common Management Agent	Version 3.6.0.595
Mcafee Common Management Agent	Version 3.6.0.603

Related CWEs

CWE-264

References (4)

https://exchange.xforce.ibmcloud.com/vulnerabilities/78446

Source: cve@mitre.org

https://kc.mcafee.com/corporate/index?page=content&id=SB10002

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/78446

Source: af854a3a-2127-422b-91ae-364da2661108

https://kc.mcafee.com/corporate/index?page=content&id=SB10002

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.