Advertisement






Check Point ZoneAlarm 8.8.1.110 Local Privilege Escalation

CVE Category Price Severity
CVE-2019-7675 CWE-269 Unknown High
Author Risk Exploitation Type Date
Sagi Shahar High Local 2019-01-17
CPE
cpe:cpe:/a:checkpoint:zonealarm:8.8.1.110
CVSS EPSS EPSSP
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 0.83 0.97712

CVSS vector description

Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2019010180

Below is a copy:

Check Point ZoneAlarm 8.8.1.110 Local Privilege Escalation
# Exploit Title: Check Point ZoneAlarm Local Privilege Escalation
# Date: 1/16/19
# Exploit Author: Chris Anastasio
# Vendor Homepage: https://www.zonealarm.com/software/free-antivirus/
# Software Link: Vulnerable Versions included in repo
# Version:
ZoneAlarm Free Antivirus + Firewall version: 15.3.064.17729
Vsmon version: 15.3.58.17668
Driver version: 15.1.29.17237
Antivirus engine version: 8.8.1.110
Antivirus signature DAT file version: 1297458144
# Tested on: Windows 7/Windows 10
# Vendor Disclosure: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk142952

POC:

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/46189.zip

Copyright ©2024 Exploitalert.

This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy and Impressum