VDB

CVE-2006-3961

CVE-2006-3961 PUBLISHED CVSS 6.800000190734863 MEDIUM

Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted attackers to execute arbitrary commands via long string parameters, which are later used in vsprintf.

EPSS 71.49% · 98.7th percentile

Risk Scores

CVSS 2.0
6.800000190734863
EPSS Score
71.49%
98.7th percentile

Affected Products

VendorProductVersions
mcafeewireless_home_network_security2006
mcafeepersonal_firewall_plus2005, 2004, 2006
mcafeequickclean2006, 2004, 2005
mcafeeantispyware2005, 2006
mcafeespamkiller5.0, 6.0, 7.0
n/an/an/a
mcafeeinternet_security_suite2005, 2006, 2004
mcafeevirusscan2006, 2004, 2005
mcafeesecurity_center6.0.23, 4.3, 6.0
mcafeeprivacy_service2005, 2004, 2006

Timeline

  • Aug 1, 2006 CVE Published
  • Jul 3, 2010 PoC Published
  • May 29, 2018 PoC Published
  • Feb 4, 2022 EPSS Score
  • Mar 29, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
  • Feb 9, 2023 EPSS Score
  • Apr 3, 2023 EPSS Score
  • Apr 28, 2023 EPSS Score
  • Jun 5, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›