McAfee Framework (http://www.mcafee.com/us/enterprise/products/system_security_management/epolicy_orchestrator.html) is "a framework used for building various services for the McAfee products. These services include HTTP servers and agents implemented, for example, in McAfee ePolicy Orchestrator and possibly other products". A format string vulnerability has been found in the McAfee framework, which in turn can lead to elevated privileges as well as arbitrary code execution.

http://www.securiteam.com/windowsntfocus/5PP0C1PNPO.html