CVE-2014-4973 : The ESET Personal Firewall NDIS filter (EpFwNdis.sys) driver in the Firewall Mod

The ESET Personal Firewall NDIS filter (EpFwNdis.sys) driver in the Firewall Module Build 1183 (20140214) and earlier in ESET Smart Security and ESET Endpoint Security products 5.0 through 7.0 allows local users to gain privileges via a crafted argument to a 0x830020CC IOCTL call.

Published 2014-09-23 15:55:06

Updated 2025-04-12 10:46:41

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2014-4973

Eset » Smart Security » Version: 5.0.95
cpe:2.3:a:eset:smart_security:5.0.95:*:*:*:*:*:*:*
Matching versions
Eset » Smart Security » Version: 6.0.314
cpe:2.3:a:eset:smart_security:6.0.314:*:*:*:*:*:*:*
Matching versions
Eset » Smart Security » Version: 5.2.9
cpe:2.3:a:eset:smart_security:5.2.9:*:*:*:*:*:*:*
Matching versions
Eset » Smart Security » Version: 5.2.15
cpe:2.3:a:eset:smart_security:5.2.15:*:*:*:*:*:*:*
Matching versions
Eset » Smart Security » Version: 6.0.306
cpe:2.3:a:eset:smart_security:6.0.306:*:*:*:*:*:*:*
Matching versions
Eset » Smart Security » Version: 6.0.308
cpe:2.3:a:eset:smart_security:6.0.308:*:*:*:*:*:*:*
Matching versions
Eset » Smart Security » Version: 5.0.94
cpe:2.3:a:eset:smart_security:5.0.94:*:*:*:*:*:*:*
Matching versions
Eset » Smart Security » Version: 6.0.316
cpe:2.3:a:eset:smart_security:6.0.316:*:*:*:*:*:*:*
Matching versions
Eset » Endpoint Security » Version: 5.0.2122
cpe:2.3:a:eset:endpoint_security:5.0.2122:*:*:*:*:*:*:*
Matching versions
Eset » Endpoint Security » Version: 5.0.2126
cpe:2.3:a:eset:endpoint_security:5.0.2126:*:*:*:*:*:*:*
Matching versions
Eset » Endpoint Security » Version: 5.0.2214
cpe:2.3:a:eset:endpoint_security:5.0.2214:*:*:*:*:*:*:*
Matching versions
Eset » Endpoint Security » Version: 5.0.2225
cpe:2.3:a:eset:endpoint_security:5.0.2225:*:*:*:*:*:*:*
Matching versions
Eset » Endpoint Security » Version: 5.0.2113
cpe:2.3:a:eset:endpoint_security:5.0.2113:*:*:*:*:*:*:*
Matching versions
Eset » Endpoint Security » Version: 5.0.2228
cpe:2.3:a:eset:endpoint_security:5.0.2228:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2014-4973

EPSS FAQ

0.06%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 16 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2014-4973

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.9	MEDIUM	AV:L/AC:M/Au:N/C:C/I:C/A:C	3.4	10.0	NIST
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2014-4973

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2014-4973

http://seclists.org/fulldisclosure/2014/Aug/52

Full Disclosure: CVE-2014-4973 - Privilege Escalation in ESET Windows Products
https://www.portcullis-security.com/security-research-and-downloads/security-advisories/cve-2014-4973/

cve-2014-4973 - Portcullis
Exploit

Jump to

Vulnerability Details : CVE-2014-4973

Products affected by CVE-2014-4973

Exploit prediction scoring system (EPSS) score for CVE-2014-4973

CVSS scores for CVE-2014-4973

CWE ids for CVE-2014-4973

References for CVE-2014-4973