Vulnerability Description
A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Windows before E80.96 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on files with limited access gains the local attacker higher privileges to the file.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Checkpoint | Endpoint Security | < e80.96 |
| Checkpoint | Zonealarm | <= 15.4.062 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/154754/CheckPoint-Endpoint-Security-Client-ExploitThird Party AdvisoryVDB Entry
- https://supportcenter.us.checkpoint.com/supportcenter/portal?eventSubmit_doGovieVendor Advisory
- https://www.zonealarm.com/software/release-history/zafavfw.html#15.4.260.17960Vendor Advisory
- http://packetstormsecurity.com/files/154754/CheckPoint-Endpoint-Security-Client-ExploitThird Party AdvisoryVDB Entry
- https://supportcenter.us.checkpoint.com/supportcenter/portal?eventSubmit_doGovieVendor Advisory
- https://www.zonealarm.com/software/release-history/zafavfw.html#15.4.260.17960Vendor Advisory
FAQ
What is CVE-2019-8452?
CVE-2019-8452 is a vulnerability with a CVSS score of 7.8 (HIGH). A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Windows before E80.96 to any file on the system will get its permission ch...
How severe is CVE-2019-8452?
CVE-2019-8452 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-8452?
Check the references section above for vendor advisories and patch information. Affected products include: Checkpoint Endpoint Security, Checkpoint Zonealarm.