MEDIUM🇬🇧 English

CVE-2012-2753

CVSS 6.9v2.0pub. 2012-06-19upd. 2026-04-29

Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and E80.x on the VPN blade platform, Endpoint Security VPN R75, Endpoint Connect R73.x, and Remote Access Clients E75.x allows local users to gain privileges via a Trojan horse DLL in the current working directory.

oryginał EN
CVSS Vector
AV:L/AC:M/Au:N/C:C/I:C/A:C
  • Checkpoint Endpoint Connect

    APP
    Checkpoint
    r73
  • Checkpoint Endpoint Security

    APP
    Checkpoint
    e80e80.10e80.20e80.30r73
  • Checkpoint Endpoint Security Vpn

    APP
    Checkpoint
    r75
  • Checkpoint Remote Access Clients

    APP
    Checkpoint
    e75e75.10e75.20
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
VPN
CWE
Referencje

Powiązane podatności

CVE-2019-8459CRITICAL9.8ten sam produkt

Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process ...

CVE-2023-28134HIGH7.8ten sam produkt

Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint/ZoneAlarm Ext...

CVE-2023-28133HIGH7.8ten sam produkt

Local privilege escalation in Check Point Endpoint Security Client (version E87.30) via crafted OpenSSL config...

CVE-2022-23742HIGH7.8ten sam produkt

Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports...

CVE-2021-30360HIGH7.8ten sam produkt

Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular...