The ESET Personal Firewall NDIS filter (EpFwNdis.sys) driver in the Firewall Module Build 1183 (20140214) and earlier in ESET Smart Security and ESET Endpoint Security products 5.0 through 7.0 allows local users to gain privileges via a crafted argument to a 0x830020CC IOCTL call.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
21 Nov 2024, 02:11
Type | Values Removed | Values Added |
---|---|---|
References | () http://seclists.org/fulldisclosure/2014/Aug/52 - | |
References | () https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-4973/ - Exploit |
Information
Published : 2014-09-23 15:55
Updated : 2024-11-21 02:11
NVD link : CVE-2014-4973
Mitre link : CVE-2014-4973
CVE.ORG link : CVE-2014-4973
JSON object : View
Products Affected
eset
- endpoint_security
- smart_security
CWE
CWE-20
Improper Input Validation