CVE-2009-5115

McAfee Common Management Agent (CMA) 3.5.5 through 3.5.5.588 and 3.6.0 through 3.6.0.608, and McAfee Agent 4.0 before Patch 3, allows remote authenticated users to overwrite arbitrary files by accessing a report-writing ActiveX control COM object.

Published: Aug 22, 2012
Updated: Apr 13, 2023
CVE: CVE-2009-5115
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
mcafee / common_management_agent	3.6.0.595	3.6.0.595.x
mcafee / common_management_agent	3.5.5.580	3.5.5.580.x
mcafee / common_management_agent	3.6.0.603	3.6.0.603.x
mcafee / common_management_agent	3.6.0.574	3.6.0.574.x
mcafee / common_management_agent	3.6.0.569	3.6.0.569.x
mcafee / common_management_agent	3.6.0.453	3.6.0.453.x
mcafee / common_management_agent	3.5.5.568	3.5.5.568.x
mcafee / common_management_agent	3.6.0.546	3.6.0.546.x
mcafee / common_management_agent	3.5.5.577	3.5.5.577.x
mcafee / common_management_agent	3.6.0.438	3.6.0.438.x
mcafee / common_management_agent	3.5.5.438	3.5.5.438.x
mcafee / common_management_agent	3.5.5.588	3.5.5.588.x

Vulnerability Database

289,697

CVE-2009-5115