Vulnerability Description
Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by entering password guesses within multiple Unlock.exe processes that are running simultaneously.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Checkpoint | Endpoint Security | e80 |
Related Weaknesses (CWE)
References
- http://www.digitalsec.net/stuff/explt+advs/CheckPoint_EndPoint_EPM_Explorer.txt
- https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsoPatch
- http://www.digitalsec.net/stuff/explt+advs/CheckPoint_EndPoint_EPM_Explorer.txt
- https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsoPatch
FAQ
What is CVE-2013-5635?
CVE-2013-5635 is a vulnerability with a CVSS score of 3.3 (LOW). Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to byp...
How severe is CVE-2013-5635?
CVE-2013-5635 has been rated LOW with a CVSS base score of 3.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-5635?
Check the references section above for vendor advisories and patch information. Affected products include: Checkpoint Endpoint Security.