• IDP Daily Update #1312
  posted: 11/18/08
  
• NSM Daily Update #1312
  posted: 11/18/08
  
• Deep Inspection 5.3r5 and above, 5.4, 6.0 #1312
  posted: 11/18/08
  
• Deep Inspection 5.1, 5.2, 5.3r4 and below #1300
  posted: 11/18/08
  
• Deep Inspection 5.0 #1132
  posted: 04/01/08
  
• Antivirus
  posted: 11/17/08

Text Size:        

• Product Information
• Security Products Overview
• Juniper Networks ISG Series
• IDP Demo
• Product Poster & Z-Card 

Title: ESET Smart Security 'easdrv.sys' Local Privilege Escalation Vulnerability

Severity: HIGH

Description:

ESET Smart Security is security software with antivirus, antispam, and firewall protection.

ESET Smart Security is prone to a local privilege-escalation vulnerability in the 'easdrv.sys' driver. The problem occurs because the driver fails to check input and output pointers with the ProbeForRead or ProbeForWrite functions. This allows attackers to pass malicious user-mode code to arbitrary addresses within the kernel.

An attacker can exploit this issue to execute arbitrary code with kernel-level privileges on a Microsoft Windows host operating system. Successfully exploiting this issue will result in the complete compromise of affected computers. Failed exploit attempts will result in a denial-of-service condition.

ESET Smart Security 3.0.667.0 is vulnerable; other versions may also be affected.

Affected Products:

• Eset Software Smart Security 3.0.667.0

References:

• ESET Software: ESET Smart Security
• ESET Software: ESET Software Homepage