VDB
CVE-2006-3961
CVE-2006-3961
PUBLISHED
CVSS 6.800000190734863 MEDIUM
Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted attackers to execute arbitrary commands via long string parameters, which are later used in vsprintf.
EPSS 71.49% · 98.7th percentile
Risk Scores
CVSS 2.0
6.800000190734863
EPSS Score
71.49%
98.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| mcafee | wireless_home_network_security | 2006 |
| mcafee | personal_firewall_plus | 2005, 2004, 2006 |
| mcafee | quickclean | 2006, 2004, 2005 |
| mcafee | antispyware | 2005, 2006 |
| mcafee | spamkiller | 5.0, 6.0, 7.0 |
| n/a | n/a | n/a |
| mcafee | internet_security_suite | 2005, 2006, 2004 |
| mcafee | virusscan | 2006, 2004, 2005 |
| mcafee | security_center | 6.0.23, 4.3, 6.0 |
| mcafee | privacy_service | 2005, 2004, 2006 |
Timeline
- Aug 1, 2006 CVE Published
- Jul 3, 2010 PoC Published
- May 29, 2018 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Apr 28, 2023 EPSS Score
- Jun 5, 2023 EPSS Score
References
- 19265 vdb
- http://www.eeye.com/html/research/upcoming/20060719.html url
- 1016614 vdb
- 20060807 [EEYEB-20060719] McAfee Subscription Manager Stack Buffer Overflow mailing-list
- 27698 vdb
- ADV-2006-3096 vdb
- http://www.eeye.com/html/research/advisories/AD2006807.html url
- http://ts.mcafeehelp.com/faq3.asp?docid=407052 url
- 21264 third-party-advisory
- VU#481212 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2006-3961 advisory