CVE-2014-4974

The ESET Personal Firewall NDIS filter (EpFwNdis.sys) kernel mode driver, aka Personal Firewall module before Build 1212 (20140609), as used in multiple ESET products 5.0 through 7.0, allows local users to obtain sensitive information from kernel memory via crafted IOCTL calls.

CVSS v2.0 2.1 LOW

2.1^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://packetstormsecurity.com/files/128874/ESET-7.0-Kernel-Memory-Leak.html
http://seclists.org/fulldisclosure/2014/Oct/118
http://www.securityfocus.com/bid/70770
https://exchange.xforce.ibmcloud.com/vulnerabilities/98312
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-4974/

Configurations

Configuration 1 (hide)

cpe:2.3:a:eset:personal_firewall_ndis_filter:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-11-04 16:55

Updated : 2024-02-04 18:35

NVD link : CVE-2014-4974

Mitre link : CVE-2014-4974

CVE.ORG link : CVE-2014-4974

JSON object : View

Products Affected

eset

personal_firewall_ndis_filter

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

{"id": "CVE-2014-4974", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-11-04T16:55:06.450", "references": [{"url": "http://packetstormsecurity.com/files/128874/ESET-7.0-Kernel-Memory-Leak.html", "source": "cve@mitre.org"}, {"url": "http://seclists.org/fulldisclosure/2014/Oct/118", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/70770", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98312", "source": "cve@mitre.org"}, {"url": "https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-4974/", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-200"}]}], "descriptions": [{"lang": "en", "value": "The ESET Personal Firewall NDIS filter (EpFwNdis.sys) kernel mode driver, aka Personal Firewall module before Build 1212 (20140609), as used in multiple ESET products 5.0 through 7.0, allows local users to obtain sensitive information from kernel memory via crafted IOCTL calls."}, {"lang": "es", "value": "El controlador del modo de kernel del filtro ESET Personal Firewall NDIS (EpFwNdis.sys), tambi\u00e9n conocido como el m\u00f3dulo Personal Firewall anterior a Build 1212 (20140609), utilizado en m\u00faltiples productos ESET 5.0 hasta 7.0, permite a usuarios locales obtener informaci\u00f3n sensible de la memoria del kernel a trav\u00e9s de llamadas IOCTL manipuladas."}], "lastModified": "2017-08-29T01:35:10.453", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:eset:personal_firewall_ndis_filter:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A967F15F-3EFC-46F7-AE31-AF77E44F36BE", "versionEndIncluding": "1183_\\(20140214\\)"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}