CVE-2017-4028

Severity CVSS v4.0:
Pending analysis
Type:
CWE-74 Injection
Publication date:
03/04/2018
Last modified:
07/11/2023

Description

Maliciously misconfigured registry vulnerability in all Microsoft Windows products in McAfee consumer and corporate products allows an administrator to inject arbitrary code into a debugged McAfee process via manipulation of registry parameters.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:mcafee:anti-virus_plus:-:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:endpoint_security:10.2:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:host_intrusion_prevention:*:*:*:*:*:*:*:* 8.0 (including)
cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_1:*:*:*:*:*:*
cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_2:*:*:*:*:*:*
cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_3:*:*:*:*:*:*
cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_4:*:*:*:*:*:*
cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_5:*:*:*:*:*:*
cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_6:*:*:*:*:*:*
cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_7:*:*:*:*:*:*
cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_8:*:*:*:*:*:*
cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_9:*:*:*:*:*:*
cpe:2.3:a:mcafee:internet_security:-:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:total_protection:-:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:virus_scan_enterprise:*:*:*:*:*:*:*:* 8.8 (including)