CVE-2005-2187
First published: Sun Jul 10 2005(Updated: )
McAfee IntruShield Security Management System allows remote authenticated users to access the "Generate Reports" feature and modify alerts by setting the Access option to true, as demonstrated using the (1) fullAccess or (2) fullAccessRight parameter in reports-column-center.jsp, or (3) fullAccess parameter to SystemEvent.jsp.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| McAfee IntruShield Security Management System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2005-2187?
CVE-2005-2187 is considered a moderate severity vulnerability due to its potential for privilege escalation by authenticated users.
How do I fix CVE-2005-2187?
To mitigate CVE-2005-2187, ensure that proper access controls are in place and limit user permissions for the Generate Reports feature.
Who is affected by CVE-2005-2187?
CVE-2005-2187 affects users of the McAfee IntruShield Security Management System who have authenticated access.
What type of attacks can exploit CVE-2005-2187?
CVE-2005-2187 can be exploited through authenticated access, allowing attackers to modify alerts and generate unauthorized reports.
What versions of McAfee are vulnerable to CVE-2005-2187?
CVE-2005-2187 affects all versions of the McAfee IntruShield Security Management System that do not have the vulnerability patched.
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/severity
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/mcafee
- canonical/mcafee intrushield security management system