NOD32 3.0/ESET Smart Security < 3.0.684 Local Privilege Escalation
High Nessus Plugin ID 35288
SynopsisThe remote Windows host has an application that is affected by a local privilege escalation issue.
DescriptionNOD32 3.0/ESET Smart Security is installed on the remote host. The installed version is older than 3.0.684. Such versions are reportedly affected by a local privilege escalation issue. By sending a specially crafted request to an IOCTL request handler in 'epfw.sys', a local user may be able to execute arbitrary code with kernel privileges on the remote system.
SolutionUpgrade to NOD32 3.0/ESET Smart Security v3.0.684 or later.