ZoneAlarm Firewall and Antivirus products before version 15.8.109.18436 allow an attacker who already has access to the system to execute code at elevated privileges through a combination of file permission manipulation and exploitation of Windows CVE-2020-00896 on unpatched systems.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HCheckpoint Zonealarm Extreme Security
APPCheckpoint< 15.8.109.18436
Powiązane podatności
Race condition in ZoneAlarm Extreme Security 9.1.507.000 on Windows XP allows local users to bypass kernel-mod...
Auth Bypass w Check Point VPN — pominięcie uwierzytelnienia przez błąd IKEv1
Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process ...
Potentially allowing an attacker to read certain information on Check Point Security Gateways once connected t...
Log files uploaded during troubleshooting by the Harmony SASE agent may have been accessible to unauthorized p...