Unrated severityNVD Advisory· Published Mar 16, 2007· Updated Apr 23, 2026
CVE-2007-1498
CVE-2007-1498
Description
Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ActiveX control (SiteManager.dll) in the ePO management console in McAfee ePolicy Orchestrator (ePO) before 3.6.1 Patch 1 and ProtectionPilot (PRP) before 1.5.0 HotFix allow remote attackers to execute arbitrary code via a long argument to the (1) ExportSiteList and (2) VerifyPackageCatalog functions, and (3) unspecified vectors involving a swprintf function call.
Affected products
5cpe:2.3:a:mcafee:epolicy_orchestrator:3.5.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:mcafee:epolicy_orchestrator:3.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:mcafee:epolicy_orchestrator:3.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:mcafee:epolicy_orchestrator:3.6.1:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:protectionpilot:1.1.1:p3:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:mcafee:protectionpilot:1.1.1:p3:*:*:*:*:*:*
- cpe:2.3:a:mcafee:protectionpilot:1.5.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- lists.grok.org.uk/pipermail/full-disclosure/2007-March/052960.htmlnvdPatch
- secunia.com/advisories/24466nvdPatchVendor Advisory
- www.securityfocus.com/bid/22952nvdPatch
- knowledge.mcafee.com/article/25/612495_f.SAL_Public.htmlnvdPatch
- knowledge.mcafee.com/article/26/612496_f.SAL_Public.htmlnvdPatch
- www.kb.cert.org/vuls/id/714593nvdUS Government Resource
- securityreason.com/securityalert/2444nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/0931nvd
News mentions
0No linked articles in our index yet.