4 matches found
CVE-2019-8459
CVE-2019-8459 affects Check Point Endpoint Security Client for Windows with the VPN blade, prior to version E80.83. The issue is a path handling flaw where a process is started without quotes around the executable path, allowing loading of a previously placed executable with a name similar to pat...
CVE-2019-8458
Check Point Endpoint Security Client for Windows (Anti-Malware blade) prior to version E81.00 is vulnerable. During a UI-initiated update, the client tries to load a non-existent DLL, which an administrator could exploit to gain code execution within the Check Point signed binary; under certain c...
CVE-2019-8461
CVE-2019-8461 – Check Point Endpoint Security Initial Client for Windows is a local privilege escalation vulnerability affecting versions prior to E81.30. The issue arises when the client loads a DLL placed in any PATH location on a clean image without the Endpoint Client installed, allowing an a...
CVE-2012-2753
CVE-2012-2753 involves an untrusted DLL search path vulnerability in Check Point Endpoint Connect VPN components (R73.x/E80.x VPN blade, R75 VPN, R73.x/E80.x Endpoint Connect, E75.x Remote Access Clients). The root cause is insecure library loading: a Trojan horse DLL placed in the current workin...