Vulnerability Spotlight - McAfee ePolicy Orchestrator DataChannel Blind SQL Injection Vulnerability

Malware News
1

Discovered by Cisco Talos Overview Talos is today disclosing TALOS-2016-0229 / CVE-2016-8027. This is an exploitable blind SQL injection vulnerability exists within McAfee’s ePolicy Orchestrator 5.3.0 that is accessible without user authentication. A specially crafted HTTP POST can allow an attacker…

Article Link: http://blog.talosintel.com/2017/02/vulnerability-spotlight-mcafee-epolicy.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed:%20feedburner/Talos%20(Talos%20Blog)