VULHUB ™

The McAfee Security Installer Control System ActiveX control is prone to a vulnerability that may reveal sensitive system information remotely. This control is marked "Safe for Scripting" and provides remotely accessible methods for querying the host system's registry. As a result, a malicious web page or HTML e-mail that invokes the control may gain access to information in the registry on a client system that has the control installed.

The McAfee Security Installer Control System ActiveX control is prone to a vulnerability that may reveal sensitive system information remotely. This control is marked "Safe for Scripting" and provides remotely accessible methods for querying the host system's registry. As a result, a malicious web page or HTML e-mail that invokes the control may gain access to information in the registry on a client system that has the control installed.