A local attacker can create a hard-link between a file to which the Check Point Endpoint Security client for Windows before E80.96 writes and another BAT file, then by impersonating the WPAD server, the attacker can write BAT commands into that file that will later be run by the user or the system.
References
Link | Resource |
---|---|
https://supportcenter.us.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk150012 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: checkpoint
Published: 2019-04-29T15:10:15
Updated: 2019-04-29T15:10:15
Reserved: 2019-02-18T00:00:00
Link: CVE-2019-8454
JSON object: View
NVD Information
Status : Modified
Published: 2019-04-29T16:29:01.157
Modified: 2023-11-07T03:13:30.167
Link: CVE-2019-8454
JSON object: View
Redhat Information
No data.