CVE-2017-4028 vulnerability in McAfee Products
Published on April 3, 2018

SB10193 - consumer and corporate products - Maliciously misconfigured registry vulnerability
Maliciously misconfigured registry vulnerability in all Microsoft Windows products in McAfee consumer and corporate products allows an administrator to inject arbitrary code into a debugged McAfee process via manipulation of registry parameters.

NVD

Products Associated with CVE-2017-4028

stack.watch emails you whenever new vulnerabilities are published in McAfee Total Protection or McAfee Virusscan Enterprise. Just hit a watch button to start following.

McAfee Total Protection

McAfee Virusscan Enterprise

Affected Versions

McAfee Anti-Virus Plus (AVP):

Version 170329 and below 29 Mar 2017 is affected.

McAfee Endpoint Security (ENS):

Version 10.2 and below 10.2 DAT V3 DAT 2932.0 is affected.

McAfee Host Intrusion Prevention (Host IPS):

Version 8.0 and below 8.0 Patch 9 Hotfix 1188590 is affected.

McAfee Internet Security (MIS):

Version 170329 and below 29 Mar 2017 is affected.

McAfee Total Protection (MTP):

Version 170329 and below 29 Mar 2017 is affected.

McAfee Virus Scan Enterprise (VSE):

Version 8.8 and below 8.8 Patch 8/9 Hotfix 1187884 is affected.

Exploit Probability

EPSS

0.11%

Percentile

30.07%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2017-4028 vulnerability in McAfee ProductsPublished on April 3, 2018

Products Associated with CVE-2017-4028

Affected Versions

Exploit Probability

CVE-2017-4028 vulnerability in McAfee Products
Published on April 3, 2018