CVE-2015-2053 Information

Description

The log viewer in McAfee Agent (MA) before 4.8.0 Patch 3 and 5.0.0 when the \Accept connections only from the ePO server\ option is disabled allows remote attackers to conduct clickjacking attacks via a crafted web page aka an \http-generic-click-jacking\ vulnerability.

Reference

http://www.securityfocus.com/bid/74873 http://www.securitytracker.com/id/1031821 https://kc.mcafee.com/corporate/index?page=content&id=SB10094