Vulnerabilities > CVE-2006-5417 - Remote Denial of Service vulnerability in McAfee Network Agent

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

mcafee

NVD

Published: 2006-10-20

Updated: 2018-10-17

Summary

McAfee Network Agent (mcnasvc.exe) 1.0.178.0, as used by multiple McAfee products possibly including Internet Security Suite, Personal Firewall Plus, and VirusScan, allows remote attackers to cause a denial of service (agent crash) via a long packet, possibly because of an invalid string position field value. NOTE: some of these details are obtained from third party information.

Vulnerable Configurations

Part	Description	Count
Application	Mcafee Mcafee Internet Security Suite * Mcafee Network Agent 1.0.178.0 Mcafee Personal Firewall Plus * Mcafee Virusscan *	4

References

http://secunia.com/advisories/22371
http://securitydot.net/xpl/exploits/vulnerabilities/articles/1659/exploit.html
http://securityreason.com/securityalert/1750
http://securitytracker.com/id?1017057
http://www.securityfocus.com/archive/1/448546/100/0/threaded
http://www.securityfocus.com/bid/20496
https://exchange.xforce.ibmcloud.com/vulnerabilities/29501