Vulnerability Description
Multiple Check Point Zone Labs ZoneAlarm products before 7.0.362, including ZoneAlarm Security Suite 5.5.062.004 and 6.5.737, use insecure default permissions for critical files, which allows local users to gain privileges or bypass security controls.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Checkpoint | Zonealarm | <= 7.0.337.0 |
| Checkpoint | Zonealarm Security Suite | 5.5.062.004 |
Related Weaknesses (CWE)
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=584Vendor Advisory
- http://secunia.com/advisories/26513Vendor Advisory
- http://securitytracker.com/id?1018588
- http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinf
- http://www.securityfocus.com/bid/25365
- http://www.securityfocus.com/bid/25377
- http://www.vupen.com/english/advisories/2007/2929
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36110
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=584Vendor Advisory
- http://secunia.com/advisories/26513Vendor Advisory
- http://securitytracker.com/id?1018588
- http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinf
- http://www.securityfocus.com/bid/25365
- http://www.securityfocus.com/bid/25377
- http://www.vupen.com/english/advisories/2007/2929
FAQ
What is CVE-2005-2932?
CVE-2005-2932 is a vulnerability with a CVSS score of 7.2 (HIGH). Multiple Check Point Zone Labs ZoneAlarm products before 7.0.362, including ZoneAlarm Security Suite 5.5.062.004 and 6.5.737, use insecure default permissions for critical files, which allows local us...
How severe is CVE-2005-2932?
CVE-2005-2932 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2932?
Check the references section above for vendor advisories and patch information. Affected products include: Checkpoint Zonealarm, Checkpoint Zonealarm Security Suite.