ESET Personal Firewall NDIS Filter Kernel Mode Driver Information Disclosure Vulnerability

ESET Personal Firewall NDIS Filter Kernel Mode Driver Information Disclosure Vulnerability

CVE-2014-4974 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The ESET Personal Firewall NDIS filter (EpFwNdis.sys) kernel mode driver, aka Personal Firewall module before Build 1212 (20140609), as used in multiple ESET products 5.0 through 7.0, allows local users to obtain sensitive information from kernel memory via crafted IOCTL calls.

Learn more about our User Device Pen Test.