PT-2019-19051 · Check Point · Check Point Zonealarm

Jakub Palaczynski

Published

2019-04-17

Updated

2020-10-22

CVE-2019-8455

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Check Point ZoneAlarm versions up to 15.4.062

Description A local attacker can gain higher privileges to files with limited access by creating a hard-link from the log file of Check Point ZoneAlarm to any file on the system, resulting in permission changes that allow all users to access the linked file.

Recommendations For Check Point ZoneAlarm versions up to 15.4.062, consider restricting access to the log file to prevent attackers from creating hard-links and gaining elevated privileges. As a temporary workaround, monitor file system permissions closely and restrict access to sensitive files until a fix is available.

Fix

Link Following

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-59CWE-65

Related Identifiers

CVE-2019-8455

Affected Products

Check Point Zonealarm

PT-2019-19051 · Check Point · Check Point Zonealarm

CVE-2019-8455

Weakness Enumeration

Related Identifiers

Affected Products

References · 4