cpe:/a:mcafee:antispyware:2005 cpe:/a:mcafee:antispyware:2006 cpe:/a:mcafee:internet_security_suite:2004 cpe:/a:mcafee:internet_security_suite:2005 cpe:/a:mcafee:internet_security_suite:2006 cpe:/a:mcafee:personal_firewall_plus:2004 cpe:/a:mcafee:personal_firewall_plus:2005 cpe:/a:mcafee:personal_firewall_plus:2006 cpe:/a:mcafee:privacy_service:2004 cpe:/a:mcafee:privacy_service:2005 cpe:/a:mcafee:privacy_service:2006 cpe:/a:mcafee:quickclean:2004 cpe:/a:mcafee:quickclean:2005 cpe:/a:mcafee:quickclean:2006 cpe:/a:mcafee:security_center:4.3 cpe:/a:mcafee:security_center:6.0 cpe:/a:mcafee:security_center:6.0.22 cpe:/a:mcafee:security_center:6.0.23 cpe:/a:mcafee:spamkiller:5.0 cpe:/a:mcafee:spamkiller:6.0 cpe:/a:mcafee:spamkiller:7.0 cpe:/a:mcafee:virusscan:2004 cpe:/a:mcafee:virusscan:2005 cpe:/a:mcafee:virusscan:2006 cpe:/a:mcafee:wireless_home_network_security:2006 CVE-2006-3961 2006-08-01T17:04:00.000-04:00 2011-03-07T00:00:00.000-05:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2006-08-02T15:49:00.000-04:00 ALLOWS_OTHER_ACCESS SECTRACK 1016614 BID 19265 BUGTRAQ 20060807 [EEYEB-20060719] McAfee Subscription Manager Stack Buffer Overflow SECUNIA 21264 OSVDB 27698 VUPEN ADV-2006-3096 CERT-VN VU#481212 CONFIRM http://ts.mcafeehelp.com/faq3.asp?docid=407052 MISC http://www.eeye.com/html/research/advisories/AD2006807.html MISC http://www.eeye.com/html/research/upcoming/20060719.html Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted attackers to execute arbitrary commands via long string parameters, which are later used in vsprintf.