[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Privilege escalation in Network Associates ePolicy Orchestrator Agent 3.5.0 (patch 3)

To: Reed Arvin <reedarvin@xxxxxxxxx>
Subject: Re: [Full-disclosure] Privilege escalation in Network Associates ePolicy Orchestrator Agent 3.5.0 (patch 3)
From: sec-list@xxxxxxxxx
Date: Mon, 15 Aug 2005 18:08:45 +0200

Hello,

Reed Arvin wrote:

However, they are a large company. Things can slip through the cracks I guess. As to the statement that was made about not following "standard industry practices", I could only assume that they would add that to save face.


ACK.

From my experience, they are not that fast in developing patches, and I don't think anything slipped trough - but propably the information was disclosed too fast for McAfee. Maybe they'll answer next time a little bit faster... ;)

-- nobnop

References:
- Re: [Full-disclosure] Privilege escalation in Network Associates ePolicy Orchestrator Agent 3.5.0 (patch 3)
  - From: NoBrain NoPain
- Re: [Full-disclosure] Privilege escalation in Network Associates ePolicy Orchestrator Agent 3.5.0 (patch 3)
  - From: Reed Arvin

Prev by Date: Re: [Full-disclosure] Privilege escalation in Network Associates ePolicy Orchestrator Agent 3.5.0 (patch 3)
Next by Date: Win32 Port of Nessusd
Previous by thread: Re: [Full-disclosure] Privilege escalation in Network Associates ePolicy Orchestrator Agent 3.5.0 (patch 3)
Next by thread: Win32 Port of Nessusd
Index(es):
- Date
- Thread