CVE-2019-8453 — Process Control in Checkpoint Zonealarm

CWE-114 — Process Control CWE-426 — Untrusted Search Path9 documents6 sources

Severity

5.5MEDIUMNVD

EPSS

0.0%

top 90.21%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Checkpoint Zonealarm

Timeline

PublishedApr 17

Latest updateMay 14

Description

Some of the DLLs loaded by Check Point ZoneAlarm up to 15.4.062 are taken from directories where all users have write permissions. This can allow a local attacker to replace a DLL file with a malicious one and cause Denial of Service to the client.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

▶NVDcheckpoint/zonealarm15.4.062

🔴Vulnerability Details

GHSA

GHSA-9v69-c968-gpf3: Some of the DLLs loaded by Check Point ZoneAlarm up to 15↗2022-05-14

▶

CVEList

CVE-2019-8453: Some of the DLLs loaded by Check Point ZoneAlarm up to 15↗2019-04-17

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Windows - NtUserSetWindowFNID Win32k User Callback Privilege Escalation (Metasploit)↗2019-07-17

▶

🕵️Threat Intelligence

Securelist

Sodin ransomware exploits Windows vulnerability and processor architecture↗2019-07-03

▶

Securelist

New zero-day vulnerability CVE-2019-0859 in win32k.sys↗2019-04-15

▶

Krebs

Patch Tuesday, October 2018 Edition↗2018-10-11

▶