50 matches found
Check Point Response to CVE-2022-23742 - local privileges escalation in Endpoint Security Client's EFRService
Symptoms - The EFRService, which collects forensics data for various blades for the Check Point Endpoint Security Client for Windows, copies files for forensics reports from a directory with insufficient privileges. A local attacker can replace those files with malicious or linked content, which...
CVE-2020-6021
Check Point Endpoint Security Client for Windows before version E84.20 allows write access to the directory from which the installation repair takes place. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted...
Check Point Endpoint Security Client Code Issue Vulnerability
Check Point Endpoint Security Client is an endpoint security protection software from Check Point, Israel. A code issue vulnerability exists in Check Point Endpoint Security Client, no information about this vulnerability is available at this time, please stay tuned to CNNVD or vendor announcemen...
CVE-2020-6014
Check Point Endpoint Security Client for Windows, with Anti-Bot or Threat Emulation blades installed, before version E83.20, tries to load a non-existent DLL during a query for the Domain Name. An attacker with administrator privileges can leverage this to gain code execution within a Check Point...
CVE-2019-8463
A denial of service vulnerability was reported in Check Point Endpoint Security Client for Windows before E82.10, that could allow service log file to be written to non-standard locations...
CVE-2019-8463
A denial of service vulnerability was reported in Check Point Endpoint Security Client for Windows before E82.10, that could allow service log file to be written to non-standard locations...
The vulnerability of clients of Check Point Endpoint Security’s comprehensive network endpoint protection solution, specifically for Windows and ZoneAlarm firewalls, stems from permission handling errors. This allows attackers to escalate their privileges.
The vulnerability of Check Point Endpoint Security Initial Client for Windows and ZoneAlarm, a network firewall, relates to permission handling errors. Exploiting this vulnerability can allow attackers to enhance their privileges through hard links from registration file archives...
CheckPoint Endpoint Security ClientZoneAlarm 15.4.062.17802 - Privilege Escalation
CheckPoint Endpoint Security ClientZoneAlarm 15.4.062.17802 - Privilege Escalation Exploit Title: CheckPoint Endpoint Security Client/ZoneAlarm 15.4.062.17802 - Privilege Escalation Date: 2019-01-30 Exploit Author: Jakub Palaczynski Vendor Homepage: https://www.checkpoint.com/ Version: Check Poin...
CVE-2019-8461
Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially crafted DLL placed in any PATH location accessible with...
CVE-2019-8461
Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially crafted DLL placed in any PATH location accessible with...
Path traversal
Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially crafted DLL placed in any PATH location accessible with...
Check Point Endpoint Security Initial Client for Windows Elevation of Privilege Vulnerability
Check Point Endpoint Security Initial Client for Windows is a Windows-based client application for Check Point Endpoint Security endpoint security management software from Check Point Israel. An elevation of privilege vulnerability exists in versions of Check Point Endpoint Security Initial Clien...
Unspecified Vulnerability in Check Point Endpoint Security Clien
Check Point Endpoint Security Client is an endpoint security protection software from Check Point Israel. A security vulnerability exists in versions of Check Point Endpoint Security Client prior to E80.83 for Windows-based platforms. An attacker can exploit this vulnerability to cause the user t...
CVE-2019-8459
Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process without using quotes in the path. This can cause loading of a previously placed executable with a name similar to the parts of the path, instead of the intended one...
Hardcoded credentials
A local attacker can create a hard-link between a file to which the Check Point Endpoint Security client for Windows before E80.96 writes and another BAT file, then by impersonating the WPAD server, the attacker can write BAT commands into that file that will later be run by the user or the syste...
CVE-2019-8454
A local attacker can create a hard-link between a file to which the Check Point Endpoint Security client for Windows before E80.96 writes and another BAT file, then by impersonating the WPAD server, the attacker can write BAT commands into that file that will later be run by the user or the syste...
CVE-2019-8452
A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Windows before E80.96 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on files with limited access gain...
Check Point Endpoint Security Full Disk Encryption RDP Connection Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/36315/info Check Point Software Endpoint Security Full Disk Encryption for Microsoft Windows is prone to a remote denial-of-service vulnerability. Exploiting this issue will allow attackers to crash the affected computer,...
CVE-2013-5635
Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by entering password guesses within multiple Unlock.e...
CVE-2013-5636
Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a device ID, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by overwriting DVREM.EPM with a copy of...