CVE-2014-4973

The ESET Personal Firewall NDIS filter (EpFwNdis.sys) driver in the Firewall Module Build 1183 (20140214) and earlier in ESET Smart Security and ESET Endpoint Security products 5.0 through 7.0 allows local users to gain privileges via a crafted argument to a 0x830020CC IOCTL call.

CVSS v2.0 6.9 MEDIUM

6.9^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 3.4 / Impact : 10.0

Access Vector LOCAL

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-4973/	Exploit
http://seclists.org/fulldisclosure/2014/Aug/52

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:eset:smart_security:5.0.95:::::::*
	cpe:2.3:a:eset:smart_security:6.0.314:::::::*
	cpe:2.3:a:eset:smart_security:5.2.9:::::::*
	cpe:2.3:a:eset:smart_security:5.2.15:::::::*
	cpe:2.3:a:eset:smart_security:6.0.306:::::::*
	cpe:2.3:a:eset:smart_security:6.0.308:::::::*
	cpe:2.3:a:eset:smart_security:5.0.94:::::::*
	cpe:2.3:a:eset:smart_security:6.0.316:::::::*

Configuration 2 (hide)

OR	cpe:2.3:a:eset:endpoint_security:5.0.2122:::::::*
	cpe:2.3:a:eset:endpoint_security:5.0.2126:::::::*
	cpe:2.3:a:eset:endpoint_security:5.0.2214:::::::*
	cpe:2.3:a:eset:endpoint_security:5.0.2225:::::::*
	cpe:2.3:a:eset:endpoint_security:5.0.2113:::::::*
	cpe:2.3:a:eset:endpoint_security:5.0.2228:::::::*

Information

Published : 2014-09-23 08:55

Updated : 2014-09-24 07:53

NVD link : CVE-2014-4973

Mitre link : CVE-2014-4973

JSON object : View

CWE

CWE-20

Improper Input Validation

Products Affected

eset

smart_security
endpoint_security

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-4973/", "name": "https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-4973/", "tags": ["Exploit"], "refsource": "MISC"}, {"url": "http://seclists.org/fulldisclosure/2014/Aug/52", "name": "20140820 CVE-2014-4973 - Privilege Escalation in ESET Windows Products", "tags": [], "refsource": "FULLDISC"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The ESET Personal Firewall NDIS filter (EpFwNdis.sys) driver in the Firewall Module Build 1183 (20140214) and earlier in ESET Smart Security and ESET Endpoint Security products 5.0 through 7.0 allows local users to gain privileges via a crafted argument to a 0x830020CC IOCTL call."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-20"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2014-4973", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.9, "accessVector": "LOCAL", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "MEDIUM", "impactScore": 10.0, "obtainAllPrivilege": false, "exploitabilityScore": 3.4, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2014-09-23T15:55Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:eset:smart_security:5.0.95:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:eset:smart_security:6.0.314:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:eset:smart_security:5.2.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:eset:smart_security:5.2.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:eset:smart_security:6.0.306:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:eset:smart_security:6.0.308:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:eset:smart_security:5.0.94:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:eset:smart_security:6.0.316:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:eset:endpoint_security:5.0.2122:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:eset:endpoint_security:5.0.2126:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:eset:endpoint_security:5.0.2214:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:eset:endpoint_security:5.0.2225:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:eset:endpoint_security:5.0.2113:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:eset:endpoint_security:5.0.2228:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2014-09-24T14:53Z"}

6.9 /10