cancel
Showing results for 
Search instead for 
Did you mean: 

McAfee Labs Security Advisory: MTIS19-030

-----------------------------------
McAfee Labs Security Advisory
-----------------------------
MTIS19-030 - June 12, 2019


Executive Summary
Since the last McAfee(R) Labs Security Advisory (May 17),
the following noteworthy event has taken place:

Patches are available for multiple Adobe security vulnerabilities

McAfee product coverage for this event:

=======================================================
McAfee Product Coverage *
=======================================================
Threat: MTIS19-030-A
Name: Adobe 2019-7845
Importance: Low
DAT: UA
BOP: N/A
Host IPS: N/A
McAfee Network Security Platform: N/A
McAfee Vulnerability Manager: Pend
McAfee Web Gateway: UA
McAfee Remediation Manager: No
McAfee Policy Auditor: Pend
MNAC: Pend
McAfee Firewall Enterprise: UA
McAfee Application Control: N/A
McAfee Database Activity Monitoring: N/A
McAfee Vulnerability Manager for Databases: N/A

 


===============================================================================
[MTIS19-030-A]
(APSB19-30) Adobe Flash Player Use After Free Remote Code Execution (CVE-2019-7845)
===============================================================================
Threat Identifier(s): CVE-2019-7845
Threat Type: Vulnerability
Risk Assessment: High
Main Threat Vectors: Locally logged-on user
User Interaction Required: Yes
Description: A vulnerability in some versions of Adobe Flash Player could lead to remote code execution.

The flaw lies in the handling of LocalConnection objects. Successful exploitation by a remote attacker could result in the execution of arbitrary code. The exploit requires the user to open a vulnerable website, email or document.
Importance: Low. On June 11, Adobe released an update to address this vulnerability

McAfee Product Coverage *

DAT files: Under analysis
VSE BOP: Out of scope
Host IPS: Out of scope
McAfee Network Security Platform: Coverage not warranted
McAfee Vulnerability Manager: An upcoming FSL/MVM package content release will contain coverage for this issue.
McAfee Web Gateway: Under analysis
McAfee Remediation Manager: Not applicable
McAfee Policy Auditor: An upcoming SCAP content release will contain coverage for this issue.
MNAC: An upcoming SCAP content release will contain coverage for this issue.
McAfee Firewall Enterprise: Under analysis
McAfee Application Control: Out of scope
McAfee Database Activity Monitoring: Out of scope
McAfee Vulnerability Manager for Databases: Out of scope

Additional Information

Adobe: Security Bulletins and Advisories
https://helpx.adobe.com/security.html

---------------------------------------------------------------------------

For McAfee Technical Support: https://mysupport.mcafee.com/eservice
For Multi-National Phone Support : http://www.mcafee.com/us/about/contact-us.aspx

McAfee values your feedback on this Security Advisory. Please reply to this mail with your comments

*The information provided is only for the use and convenience of McAfee's customers in connection with their McAfee products, and applies only to the threats described herein. McAfee product coverage statements are limited to known attack vectors and should not be considered comprehensive. THE INFORMATION PROVIDED HEREIN IS PROVIDED "AS IS" AND IS SUBJECT TO CHANGE WITHOUT NOTICE.

The information contained herein is the property of McAfee, LLC and may not be reproduced or disseminated without the expressed written consent of McAfee, LLC.

McAfee and the McAfee logo are trademarks or registered trademarks of McAfee, LLC or its subsidiaries in the US and other countries. Other marks and brands may be claimed as the property of others.

McAfee, LLC. 2821 Mission College Blvd, Santa Clara, CA 95054 888.847.8766
http://www.mcafee.com

(C) 2018 McAfee, LLC. All rights reserved.

Labels (2)
Contributors
Version history
Revision #:
1 of 1
Last update:
‎06-12-2019 11:27 AM
Updated by:
 

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community