CVE-2019-8455 - OpenCVE

A hard-link created from the log file of Check Point ZoneAlarm up to 15.4.062 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on files with limited access gains the local attacker higher privileges to the file.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

AV:L/AC:L/Au:N/C:P/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Checkpoint	Zonealarm

Configuration 1 [-]

cpe:2.3:a:checkpoint:zonealarm:*:*:*:*:*:*:*:*

References

Link	Resource
http://www.securityfocus.com/bid/108029	Third Party Advisory VDB Entry
https://www.zonealarm.com/software/release-history/zafavfw.html#15.4.260.17960	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: checkpoint

Published: 2019-04-17T14:05:54

Updated: 2019-04-23T15:06:11

Reserved: 2019-02-18T00:00:00

Link: CVE-2019-8455

JSON object: View

NVD Information

Status : Analyzed

Published: 2019-04-17T15:29:01.220

Modified: 2020-10-22T17:16:22.257

Link: CVE-2019-8455

JSON object: View

Redhat Information

No data.

CWE

{"containers": {"cna": {"affected": [{"product": "Check Point ZoneAlarm", "vendor": "n/a", "versions": [{"status": "affected", "version": "up to 15.4.062"}]}], "descriptions": [{"lang": "en", "value": "A hard-link created from the log file of Check Point ZoneAlarm up to 15.4.062 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on files with limited access gains the local attacker higher privileges to the file."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-65", "description": "CWE-65", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2019-04-23T15:06:11", "orgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45", "shortName": "checkpoint"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.zonealarm.com/software/release-history/zafavfw.html#15.4.260.17960"}, {"name": "108029", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/108029"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@checkpoint.com", "ID": "CVE-2019-8455", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Check Point ZoneAlarm", "version": {"version_data": [{"version_value": "up to 15.4.062"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A hard-link created from the log file of Check Point ZoneAlarm up to 15.4.062 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on files with limited access gains the local attacker higher privileges to the file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-65"}]}]}, "references": {"reference_data": [{"name": "https://www.zonealarm.com/software/release-history/zafavfw.html#15.4.260.17960", "refsource": "MISC", "url": "https://www.zonealarm.com/software/release-history/zafavfw.html#15.4.260.17960"}, {"name": "108029", "refsource": "BID", "url": "http://www.securityfocus.com/bid/108029"}]}}}}, "cveMetadata": {"assignerOrgId": "897c38be-0345-43cd-b6cf-fe179e0c4f45", "assignerShortName": "checkpoint", "cveId": "CVE-2019-8455", "datePublished": "2019-04-17T14:05:54", "dateReserved": "2019-02-18T00:00:00", "dateUpdated": "2019-04-23T15:06:11", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:checkpoint:zonealarm:*:*:*:*:*:*:*:*", "matchCriteriaId": "113B97FA-6D1B-4C54-863C-532AEE5BFB93", "versionEndIncluding": "15.4.062", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A hard-link created from the log file of Check Point ZoneAlarm up to 15.4.062 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on files with limited access gains the local attacker higher privileges to the file."}, {"lang": "es", "value": "Un enlace f\u00edsico creado a partir del archivo de registro de Check Point ZoneAlarm versi\u00f3n hasta 15.4.062, cualquier archivo en el sistema cambiar\u00e1 su permiso para que todos los usuarios puedan acceder a ese archivo vinculado. Hacer esto en archivos con acceso limitado le otorga al atacante local mayores privilegios para el archivo."}], "id": "CVE-2019-8455", "lastModified": "2020-10-22T17:16:22.257", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-04-17T15:29:01.220", "references": [{"source": "cve@checkpoint.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/108029"}, {"source": "cve@checkpoint.com", "tags": ["Vendor Advisory"], "url": "https://www.zonealarm.com/software/release-history/zafavfw.html#15.4.260.17960"}], "sourceIdentifier": "cve@checkpoint.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-59"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-65"}], "source": "cve@checkpoint.com", "type": "Secondary"}]}