Multiple ESET Products CVE-2014-4973 Heap Overflow Vulnerability
BID:69294
Info
Multiple ESET Products CVE-2014-4973 Heap Overflow Vulnerability
| Bugtraq ID: | 69294 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2014-4973 |
| Remote: | No |
| Local: | Yes |
| Published: | Aug 15 2014 12:00AM |
| Updated: | Aug 15 2014 12:00AM |
| Credit: | Kyriakos Economou |
| Vulnerable: |
Eset Smart Security 0 Eset Endpoint Security 0 |
| Not Vulnerable: | |
Discussion
Multiple ESET Products CVE-2014-4973 Heap Overflow Vulnerability
Multiple ESET products are prone to a heap-overflow vulnerability.
Local attackers can exploit this issue to execute code with SYSTEM privileges, which may lead to further attacks.
Multiple ESET products are prone to a heap-overflow vulnerability.
Local attackers can exploit this issue to execute code with SYSTEM privileges, which may lead to further attacks.
Exploit / POC
Multiple ESET Products CVE-2014-4973 Heap Overflow Vulnerability
Currently, we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Multiple ESET Products CVE-2014-4973 Heap Overflow Vulnerability
Solution:
Reportedly the issue is fixed, however Symantec has not confirmed this. Please contact the vendor for more information.
Solution:
Reportedly the issue is fixed, however Symantec has not confirmed this. Please contact the vendor for more information.
References
Multiple ESET Products CVE-2014-4973 Heap Overflow Vulnerability
References:
References:
- ESET Homepage (ESET)
- Privilege Escalation In ESET Products For Windows (Porticullis)