CVEs-PoC/2015/CVE-2015-8577.md

### [CVE-2015-8577](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8577)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brightgreen)

### Description

The Buffer Overflow Protection (BOP) feature in McAfee VirusScan Enterprise before 8.8 Patch 6 allocates memory with Read, Write, Execute (RWX) permissions at predictable addresses on 32-bit platforms when protecting another application, which allows attackers to bypass the DEP and ASLR protection mechanisms via unspecified vectors.

### POC

#### Reference
- http://blog.ensilo.com/the-av-vulnerability-that-bypasses-mitigations
- https://kc.mcafee.com/corporate/index?page=content&id=SB10142

#### Github
No PoCs found on GitHub currently.