CVE-2014-2848 - Vulnerability Details - OpenCVE

A race condition in the wmi_malware_scan.nbin plugin before 201402262215 for Nessus 5.2.1 allows local users to gain privileges by replacing the dissolvable agent executable in the Windows temp directory with a Trojan horse program.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Tenable	Nessus Plugin-set

Configuration 1 [-]

OR	cpe:2.3:a:tenable:nessus:5.2.1:::::::*
	cpe:2.3:a:tenable:plugin-set::::::::

No data.

References

Link	Providers
http://secunia.com/advisories/57403
http://www.securitytracker.com/id/1029946
https://discussions.nessus.org/thread/7195
https://www.nccgroup.com/en/learning-and-research-centre/technical-advisories/nessus-authenticated-scan-local-privilege-escalation/

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2014-04-11T15:00:00Z

Updated: 2024-09-17T02:53:13.554Z

Reserved: 2014-04-11T00:00:00Z

Link: CVE-2014-2848

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2014-04-11T15:55:22.257

Modified: 2025-04-12T10:46:40.837

Link: CVE-2014-2848

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "A race condition in the wmi_malware_scan.nbin plugin before 201402262215 for Nessus 5.2.1 allows local users to gain privileges by replacing the dissolvable agent executable in the Windows temp directory with a Trojan horse program."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2014-04-11T15:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.nccgroup.com/en/learning-and-research-centre/technical-advisories/nessus-authenticated-scan-local-privilege-escalation/"}, {"name": "1029946", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1029946"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://discussions.nessus.org/thread/7195"}, {"name": "57403", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/57403"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2014-2848", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A race condition in the wmi_malware_scan.nbin plugin before 201402262215 for Nessus 5.2.1 allows local users to gain privileges by replacing the dissolvable agent executable in the Windows temp directory with a Trojan horse program."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.nccgroup.com/en/learning-and-research-centre/technical-advisories/nessus-authenticated-scan-local-privilege-escalation/", "refsource": "MISC", "url": "https://www.nccgroup.com/en/learning-and-research-centre/technical-advisories/nessus-authenticated-scan-local-privilege-escalation/"}, {"name": "1029946", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1029946"}, {"name": "https://discussions.nessus.org/thread/7195", "refsource": "CONFIRM", "url": "https://discussions.nessus.org/thread/7195"}, {"name": "57403", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/57403"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T10:28:46.193Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.nccgroup.com/en/learning-and-research-centre/technical-advisories/nessus-authenticated-scan-local-privilege-escalation/"}, {"name": "1029946", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1029946"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://discussions.nessus.org/thread/7195"}, {"name": "57403", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/57403"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2014-2848", "datePublished": "2014-04-11T15:00:00Z", "dateReserved": "2014-04-11T00:00:00Z", "dateUpdated": "2024-09-17T02:53:13.554Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:tenable:nessus:5.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "60C879AF-91B7-435C-9B8A-C35818124FFD", "vulnerable": true}, {"criteria": "cpe:2.3:a:tenable:plugin-set:*:*:*:*:*:*:*:*", "matchCriteriaId": "04B734FF-0CD2-4B72-A5E5-599B968341DE", "versionEndIncluding": "201402092115", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A race condition in the wmi_malware_scan.nbin plugin before 201402262215 for Nessus 5.2.1 allows local users to gain privileges by replacing the dissolvable agent executable in the Windows temp directory with a Trojan horse program."}, {"lang": "es", "value": "Una condici\u00f3n de carrera en el plugin wmi_malware_scan.nbin anterior a 201402262215 para Nessus 5.2.1 permite a usuarios locales ganar privilegios mediante la sustituci\u00f3n del ejecutable del agente vol\u00e1til en el directorio temporal de Windows con un programa de caballo de troya."}], "id": "CVE-2014-2848", "lastModified": "2025-04-12T10:46:40.837", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2014-04-11T15:55:22.257", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/57403"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id/1029946"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://discussions.nessus.org/thread/7195"}, {"source": "cve@mitre.org", "url": "https://www.nccgroup.com/en/learning-and-research-centre/technical-advisories/nessus-authenticated-scan-local-privilege-escalation/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/57403"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1029946"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://discussions.nessus.org/thread/7195"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.nccgroup.com/en/learning-and-research-centre/technical-advisories/nessus-authenticated-scan-local-privilege-escalation/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-362"}], "source": "nvd@nist.gov", "type": "Primary"}]}