ESET Smart Security Easdrv.sys Local Privilege Escalation Vulnerability Network Vulnerability

Summary

The host is running ESET Smart Security, which is prone to a local privilege escalation vulnerability.

Impact

Local exploitation will allow attackers to execute arbitrary code with kernel level privileges to result in complete compromise of the system. Impact Level : Application

Solution

Upgrade to Eset Software Smart Security version 4.0.474 or later For update refer, http://www.eset.com/

Insight

The flaw exists due to an error in easdrv.sys driver file.

Affected

- Eset Software Smart Security 3.0.667.0 and prior on Windows (All)

References

http://www.securityfocus.com/bid/30719/discuss

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-7107

CVSS	Base Score: 7.2 AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

South River Technologies WebDrive Local Privilege Escalation Vulnerability
ZyXEL ZyWALL Web Configurator Authentication Bypass Vulnerability
Mozilla Products 'NoWaiverWrapper' Privilege Escalation Vulnerability (Windows)
VMAX Web Viewer Default Credentials Authentication Bypass Vulnerability
Adobe Flash Media Server Privilege Escalation Vulnerability

ESET Smart Security easdrv.sys Local Privilege Escalation Vulnerability

Take action and discover your vulnerabilities