We have Mcafee Enterprise 8.5.0i installed on our Windows Server and there seems to be an issue with the 'FrameworkService.exe' being vulnerable to DOS attacks.
There was a reference to KB52556 to update the Framework, however I can't seem to find it anywhere on this site for downloading.
Can someone point be in the right direction?
McAfee Framework ePolicy Orchestrator Remote Format String Vulnerability
The McAfee Framework service is prone to a remote format-string vulnerability
based on the version information returned by the remote service. Successful
exploitation of this issue can allow attackers to execute arbitrary code within the
permissions of the framework. A failed attack will likely cause denial-of-service
(DoS) conditions. McAfee Common Managemetn Agent 184.108.40.2064 (Patch3) or
earlier, McAfee Agent (MA) 4.0, Framework 220.127.116.119 and ePolicy Orchestrator 4.0
are vulnerable to this issue; other versions may also be affected but have not been
This finding is based on version information which may not have been updated by
previously installed patches (e.g., Red Hat "back ports"). Please submit a "Patched
Services" dispute in TrustKeeper if this vulnerability has already been patched.
McAfee Common Management Agent 'FrameworkService.exe' Remote Denial
of Service Vulnerability
This host is running a version of McAfee Common Management Agent that is prone
to a memory corruption vulnerability which could allow a remote attacker to crash
Vulnerabilities which result only in denial of service do not affect PCI compliance;
however, they may still be critical to your systems.
I assume your are trying to download the McAfee Agent package. If this is the case the please go t
1. Access the download site
2. Enter the grant #
3. Select the Product
4. Under Management Solutions select the Agent version you want to download
McAfee Agent 4.0.0McAfee Agent 4.5.0McAfee Agent 4.6.0
PS: I'm not able to access the KB link you provided.
I don't believe its McAfee Agent, but more McAfee framework?
The link that I've provided was quoted from Trustwave's PCI Scan results.
Download the new ePolicy Orchestrator (ePO) Support Center Extension which simplifies ePO management and provides support resources directly in the console. Learn more about ePO Support Center
2821 Mission College Blvd.
Santa Clara, CA 95054 USA
Consumer Support | Enterprise Support | McAfee.com
Legal | Privacy | Copyright © 2019 McAfee, LLC