BID:106796

McAfee Web Gateway CVE-2019-3581 Remote Denial of Service Vulnerability

Info

McAfee Web Gateway CVE-2019-3581 Remote Denial of Service Vulnerability

Bugtraq ID:	106796
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2019-3581
Remote:	Yes
Local:	No
Published:	Jan 08 2019 12:00AM
Updated:	Jan 08 2019 12:00AM
Credit:	The vendor reported this issue.
Vulnerable:	McAfee Web Gateway 8.0.1 McAfee Web Gateway 7.8.2 McAfee Web Gateway 8.0 McAfee Web Gateway 7.8.2.4

Not Vulnerable:	McAfee Web Gateway 8.0.2 McAfee Web Gateway 7.8.2.5

Discussion

McAfee Web Gateway CVE-2019-3581 Remote Denial of Service Vulnerability

McAfee Web Gateway is prone to a remote denial-of-service vulnerability.

Successful exploits of this issue will allow attackers to cause a denial-of-service condition.

The following versions are vulnerable:

7.8.2 versions prior to 7.8.2.5
8.0 versions prior to 8.0.2

Exploit / POC

McAfee Web Gateway CVE-2019-3581 Remote Denial of Service Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

McAfee Web Gateway CVE-2019-3581 Remote Denial of Service Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

References

McAfee Web Gateway CVE-2019-3581 Remote Denial of Service Vulnerability

References:

McAfee Homepage (McAfee)
Security Bulletin - Web Gateway updates fix four vulnerabilities (McAfee)