← voltar
CVE-2019-8461

CVE-2019-8461

EPSS 1.1%CWE-114
Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leverage this to gain LPE using a specially crafted DLL placed in any PATH location accessible with write permissions to the user.
Produtos afetados
n/a · Check Point Endpoint Security Initial Client for Windows

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://safebreach.com/Post/Check-Point-Endpoint-Security-Initial-Client-for-Windows-Privilege-Escalation-to-SYSTEMhttps://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk160812