6 matches found
CVE-2011-2664 Symlink Following and Second-Order Symlink Vulnerabilities in Multiple Check Point Security Management Products
======================================================================= title: Symlink Following and Second-Order Symlink Vulnerabilities in Multiple Check Point Security Management Products product: Check Point Security Management Multi-Domain Security Management / Provider-1 SmartCenter...
Check Point多域管理/Provider-1文件覆盖漏洞
CVE ID:CVE-2011-2664 Check Point Provider-1是一款安全管理解决方案,用来满足具有复杂安全策略需求企业的可扩展性要求。 Check Point多域管理/Provider-1存在未明错误,允许攻击者覆盖任意文件或修改SofaWare 管理服务器配置。 Check Point Provider-1 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息:...
Design/Logic Flaw
Unspecified vulnerability in Check Point Multi-Domain Management / Provider-1 NGX R65, R70, R71, and R75, and SmartCenter during installation on non-Windows machines, allows local users on the MDS system to overwrite arbitrary files via unknown vectors...
CVE-2011-2664
Unspecified vulnerability in Check Point Multi-Domain Management / Provider-1 NGX R65, R70, R71, and R75, and SmartCenter during installation on non-Windows machines, allows local users on the MDS system to overwrite arbitrary files via unknown vectors...
CVE-2011-2664
CVE-2011-2664 concerns a post-installation/installation-time vulnerability in Check Point’s Multi-Domain Management / Provider-1 and related SmartCenter components. An unprivileged local user can overwrite arbitrary files via a symlink-related weakness in a post-install script used to generate th...
File overwrite vulnerability in Multi-Domain Management / Provider-1 script (CVE-2011-2664)
...