Unrated severityNVD Advisory· Published Aug 12, 2005· Updated Apr 16, 2026

CVE-2005-2554

Description

The web server for Network Associates ePolicy Orchestrator Agent 3.5.0 (patch 3) uses insecure permissions for the "Common Framework\Db" folder, which allows local users to read arbitrary files by creating a subfolder in the EPO agent web root directory.

Affected products

Network Associates/Epolicy Orchestrator Agent
cpe:2.3:a:network_associates:epolicy_orchestrator_agent:3.5.0_\(patch_3\):*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.virus.org/full-disclosure-0508/msg00376.htmlnvdExploitVendor Advisory
knowledgemap.nai.com/KanisaSupportSite/search.donvd
reedarvin.thearvins.com/20050811-01.htmlnvd
secunia.com/advisories/16410nvd
www.osvdb.org/18735nvd
www.securityfocus.com/bid/14549nvd
www.vupen.com/english/advisories/2005/1402nvd
exchange.xforce.ibmcloud.com/vulnerabilities/21839nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000