Microsoft Security Essentials < v4.2 Local Privilege Escalation Vulnerability

high Nessus Network Monitor Plugin ID 6818

Synopsis

The remote Windows machine appears to be running a version of Microsoft Security Essentials that is known to be vulnerable to a local privilege escalation vulnerability.

Description

The remote Windows machine appears to be running a version of Microsoft Security Essentials (an antimalware program) that is known to be vulnerable to a local privilege escalation vulnerability. Versions of Microsoft Security Essentials (MSE) earlier than 4.2 contain a vulnerability that could lead to execution of arbitrary code in the security context of the LocalSystem account. Successfully exploiting this issue will result in the complete compromise of affected computers, although this requires the attacker to obtain local interactive access to the target machine.

Solution

Upgrade to the latest version (v4.2 or later).

See Also

http://seclists.org/fulldisclosure/2013/May/10

Plugin Details

Severity: High

ID: 6818

Family: Web Clients

Published: 5/14/2013

Updated: 3/6/2019

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 5.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: High

Base Score: 8.4

Temporal Score: 7.3

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:X

Vulnerability Information

Patch Publication Date: 2/13/2013

Vulnerability Publication Date: 5/4/2013

Reference Information

BID: 59645