CVE-2005-2932Checkpoint Zonealarm vulnerability

CWE-2643 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.0%
top 85.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Checkpoint ZonealarmCheckpoint Zonealarm Security Suite
Timeline
PublishedDec 31
Latest updateMay 1

Description

Multiple Check Point Zone Labs ZoneAlarm products before 7.0.362, including ZoneAlarm Security Suite 5.5.062.004 and 6.5.737, use insecure default permissions for critical files, which allows local users to gain privileges or bypass security controls.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDcheckpoint/zonealarm_security_suite5.5.062.004, 6.5.737+1
NVDcheckpoint/zonealarm7.0.337.0

🔴Vulnerability Details

2
GHSA
GHSA-3j9v-3vrm-w8c9: Multiple Check Point Zone Labs ZoneAlarm products before 72022-05-01
CVEList
CVE-2005-2932: Multiple Check Point Zone Labs ZoneAlarm products before 72007-08-21
CVE-2005-2932 — Checkpoint Zonealarm vulnerability | cvebase