2 matches found
NOD32 3.0/ESET Smart Security < 3.0.684 Local Privilege Escalation
NOD32 3.0/ESET Smart Security is installed on the remote host. The installed version is older than 3.0.684. Such versions are reportedly affected by a local privilege escalation issue. By sending a specially crafted request to an IOCTL request handler in 'epfw.sys', a local user may be able to...
CVE-2008-5724
CVE-2008-5724 affects the Personal Firewall driver (epfw.sys) in ESET Smart Security up to version 3.0.672, and the Personal Firewall component itself up to 3.0.672.0. The flaw allows local users to escalate privileges by sending a crafted IRP through a METHOD_NEITHER IOCTL to \Device\Epfw, which...