Status
Not open for further replies.

lordman

Level 6
Versions 5.0 – 7.0 of ESET Smart Security and ESET Endpoint Security products for Windows XP OS allow a low privileged user to execute code as SYSTEM by exploiting a vulnerability in the ESET Personal Firewall NDIS filter (EpFwNdis.sys) kernel mode driver also mentioned as Personal Firewall module: Build 1183 (20140214) and prior. This is a ‘trusted value vulnerability’ that can be triggered through a specific IOCTL with a specifically crafted buffer, to force the driver to validate an improper IOCTL.

https://www.portcullis-security.com...-downloads/security-advisories/cve-2014-4973/
 
  • Like
Reactions: kiric96
Status
Not open for further replies.
Top