McAfee Email and Web Security Appliance Session hijacking and bypassing client-side session timeouts

This patch notification details a medium risk vulnerability in the McAfee Email and Web Security Appliance, discovered by Ben Williams.

Download patch notification

Published by NCC Group Publication Archive

View all posts by NCC Group Publication Archive ->

Here are some related articles you may find interesting

Reverse Engineering Coin Hunt World’s Binary Protocol

Introduction We are going to walk through the process we took to reverse engineer parts of the Android game Coin Hunt World. Our goal was to identify methods and develop tooling to cheat at the game. Most of the post covers reverse engineering the game’s binary protocol and using that…

Gaming & Media

Research

May 31, 2023

26 mins read

Technical Advisory – Multiple Vulnerabilities in Faronics Insight (CVE-2023-28344, CVE-2023-28345, CVE-2023-28346, CVE-2023-28347, CVE-2023-28348, CVE-2023-28349, CVE-2023-28350, CVE-2023-28351, CVE-2023-28352, CVE-2023-28353)

Introduction Faronics Insight is a feature rich software platform which is deployed on premises in schools. The application enables teachers to administer, control and interact with student devices. The application contains numerous features, including allowing teachers to transfer files to/from students and remotely viewing the contents of student screens. Generally…

Technical advisories

Vulnerability

May 30, 2023

23 mins read

Tool Release: Code Query (cq)

Code Query is a new, open source universal code security scanning tool. CQ scans code for security vulnerabilities and other items of interest to security-focussed code reviewers. It outputs text files containing references to issues found, into an output directory. These output files can then be reviewed, filtered by unix…

Tool Release

May 26, 2023

1 min read

View articles by category

Most recent posts

Call us before you need us.

Our experts will help you.

Get in touch

McAfee Email and Web Security Appliance Session hijacking and bypassing client-side session timeouts

Like this:

View articles by category

Most popular posts

Most recent posts

Call us before you need us.

McAfee Email and Web Security Appliance Session hijacking and bypassing client-side session timeouts

Share this:

Like this:

Here are some related articles you may find interesting

Reverse Engineering Coin Hunt World’s Binary Protocol

Technical Advisory – Multiple Vulnerabilities in Faronics Insight (CVE-2023-28344, CVE-2023-28345, CVE-2023-28346, CVE-2023-28347, CVE-2023-28348, CVE-2023-28349, CVE-2023-28350, CVE-2023-28351, CVE-2023-28352, CVE-2023-28353)

Tool Release: Code Query (cq)

View articles by category

Most popular posts

Most recent posts

Call us before you need us.