Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
DLL high jacking in Trellix Agent
Vulnerability Description
A DLL hijacking vulnerability in the MA Smart Installer for Windows prior to 5.7.7, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL into the folder from where the Smart installer is being executed.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
McAfee Agent 代码问题漏洞
Vulnerability Description
McAfee Agent(MA)是美国迈克菲(McAfee)公司的一套提供了ePolicy Orchestrator(杀毒软件管理平台)与被管理产品之间的安全通信的客户端组件。 McAfee Agent (MA) 5.7.7之前版本存在代码问题漏洞,该漏洞源于允许本地用户执行任意代码并通过将恶意 DLL 小心放置到 Smart 正在执行安装程序。
CVSS Information
N/A
Vulnerability Type
N/A