Multiple vulnerabilities in McAfee DLPe

Description

Multiple serious vulnerabilities have been found in McAfee DLPe. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, bypass security restrictions, inject arbitrary code or write local files.

Below is a complete list of vulnerabilities

1. XSS vulnerability can be exploited remotely via an unspecified vectors;
2. Multiple CSRF vulnerabilities cab be exploited remotely via requests hijack;
3. An unknown vulnerabilities can be exploited remotely via a specially designed URL or other unspecified vectors.

Original advisories

• McAfee bulletin

Related products

• McAfee-Data-Loss-Prevention-Endpoint

CVE list

• CVE-2015-2760
  warning
• CVE-2015-2759
  high
• CVE-2015-2758
  high
• CVE-2015-2757
  warning

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com