First published: Sun Jul 10 2005(Updated: )
McAfee IntruShield Security Management System allows remote authenticated users to access the "Generate Reports" feature and modify alerts by setting the Access option to true, as demonstrated using the (1) fullAccess or (2) fullAccessRight parameter in reports-column-center.jsp, or (3) fullAccess parameter to SystemEvent.jsp.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
McAfee IntruShield Security Management System |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2005-2187 is considered a moderate severity vulnerability due to its potential for privilege escalation by authenticated users.
To mitigate CVE-2005-2187, ensure that proper access controls are in place and limit user permissions for the Generate Reports feature.
CVE-2005-2187 affects users of the McAfee IntruShield Security Management System who have authenticated access.
CVE-2005-2187 can be exploited through authenticated access, allowing attackers to modify alerts and generate unauthorized reports.
CVE-2005-2187 affects all versions of the McAfee IntruShield Security Management System that do not have the vulnerability patched.