CVE-2015-8993
First published: Tue Mar 14 2017(Updated: )
Malicious file execution vulnerability in Intel Security CloudAV (Beta) before 0.5.0.151.3 allows attackers to make the product momentarily vulnerable via executing preexisting specifically crafted malware during installation or uninstallation, but not during normal operation.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| McAfee WebAdvisor | =3.7.2 | |
| McAfee WebAdvisor | =4.0.1 | |
| McAfee WebAdvisor | =4.0.2 | |
| McAfee Cloud AV | ||
| McAfee Security Scan Plus |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2015-8993?
CVE-2015-8993 is classified as a medium severity vulnerability.
How do I fix CVE-2015-8993?
To fix CVE-2015-8993, update Intel Security CloudAV to version 0.5.0.151.3 or later.
What are the affected software versions for CVE-2015-8993?
CVE-2015-8993 affects McAfee Security Webadvisor versions 3.7.2, 4.0.1, 4.0.2, as well as McAfee Cloud AV and McAfee Security Scan Plus.
During what operations is CVE-2015-8993 exploitable?
CVE-2015-8993 is exploitable during the installation or uninstallation processes of the affected software.
What kind of attacks can CVE-2015-8993 enable?
CVE-2015-8993 can enable attackers to execute preexisting specifically crafted malware on vulnerable installations.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/mcafee
- canonical/mcafee webadvisor
- version/mcafee webadvisor/3.7.2
- version/mcafee webadvisor/4.0.1
- version/mcafee webadvisor/4.0.2
- canonical/mcafee cloud av
- canonical/mcafee security scan plus