Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2932

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-2932
Last Modified 07 Mar 2011 09:25:18
Published 31 Dec 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-2932

Summary

Multiple Check Point Zone Labs ZoneAlarm products before 7.0.362, including ZoneAlarm Security Suite 5.5.062.004 and 6.5.737, use insecure default permissions for critical files, which allows local users to gain privileges or bypass security controls.

Vulnerable Systems

Application

  • Checkpoint Zonealarm 7.0.337.0

  • Checkpoint Zonealarm Security Suite 5.5.062.004

  • Checkpoint Zonealarm Security Suite 6.5.737


References

XF - zonealarm-acl-privilege-escalation(36110)

VUPEN - ADV-2007-2929

BID - 25377

BID - 25365

MISC - http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=53

SECTRACK - 1018588

SECUNIA - 26513

IDEFENSE - 20070820 Check Point Zone Labs Multiple Products Privilege Escalation Vulnerability


Last Updated: 27 May 2016 10:40:40