A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Windows before E80.96 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on files with limited access gains the local attacker higher privileges to the file.
oryginał ENCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HCheckpoint Endpoint Security
APPCheckpoint< e80.96Checkpoint Zonealarm
APPCheckpoint≤ 15.4.062
Powiązane podatności
Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint/ZoneAlarm Ext...
Local privilege escalation in Check Point Endpoint Security Client (version E87.30) via crafted OpenSSL config...
Check Point ZoneAlarm Extreme Security before 15.8.211.19229 allows local users to escalate privileges. This o...
Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports...
Check Point ZoneAlarm before version 15.8.200.19118 allows a local actor to escalate privileges during the upg...