Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-9193

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2014-9193
Last Modified 22 Dec 2014 10:35:56
Published 19 Dec 2014 07:59:03
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2014-9193

Summary

Innominate mGuard with firmware before 7.6.6 and 8.x before 8.1.4 allows remote authenticated admins to obtain root privileges by changing a PPP configuration setting.

Vulnerable Systems

Operating System

  • Innominate Mguard Firmware 7.6.6

  • Innominate Mguard Firmware 8.0.0

  • Innominate Mguard Firmware 8.0.1

  • Innominate Mguard Firmware 8.0.2

  • Innominate Mguard Firmware 8.0.3

  • Innominate Mguard Firmware 8.1.1

  • Innominate Mguard Firmware 8.1.2

  • Innominate Mguard Firmware 8.1.3


References

MISC - https://ics-cert.us-cert.gov/advisories/ICSA-14-352-02

CONFIRM - http://www.innominate.com/data/downloads/software/innominate_security_advisory_20141217_001_en.pdf


Last Updated: 27 May 2016 11:07:20