Check Point ZoneAlarm 8.8.1.110 - Local Privilege Escalation Exploit

2019-01-20T00:00:00
ID 1337DAY-ID-31990
Type zdt
Reporter Chris Anastasio
Modified 2019-01-20T00:00:00

Description

Exploit for windows platform in category local exploits

                                        
                                            # Exploit Title: Check Point ZoneAlarm Local Privilege Escalation
# Exploit Author: Chris Anastasio
# Vendor Homepage: https://www.zonealarm.com/software/free-antivirus/
# Software Link: Vulnerable Versions included in repo
# Version:
ZoneAlarm Free Antivirus + Firewall version: 15.3.064.17729
Vsmon version: 15.3.58.17668
Driver version: 15.1.29.17237
Antivirus engine version: 8.8.1.110
Antivirus signature DAT file version: 1297458144
# Tested on: Windows 7/Windows 10
# Vendor Disclosure: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk142952

POC:

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/46189.zip

#  0day.today [2019-01-21]  #