VYPR
Unrated severityNVD Advisory· Published Aug 22, 2012· Updated Jun 16, 2026

CVE-2012-4588

CVE-2012-4588

Description

McAfee Enterprise Mobility Manager (EMM) Agent before 4.8 and Server before 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote attackers to cause a denial of service (excessive list size in the EMM Database) via a long sequence of login attempts with different usernames.

Affected products

4
  • cpe:2.3:a:mcafee:enterprise_mobility_manager:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:mcafee:enterprise_mobility_manager:*:*:*:*:*:*:*:*range: <=4.7
    • (no CPE)range: <10.1
  • cpe:2.3:a:mcafee:enterprise_mobility_manager_agent:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:mcafee:enterprise_mobility_manager_agent:*:*:*:*:*:*:*:*range: <=10.0
    • (no CPE)range: <4.8

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.