Description
Check Point ZoneAlarm version 15.3.064.17729 and below expose a WCF service that can allow a local low privileged user to execute arbitrary code as SYSTEM.
Affected products
- Check Point Software Technologies Ltd. / ZoneAlarmprior to version 15.3.064.17729 – prior to version 15.3.064.17729
References
- MISChttps://www.zonealarm.com/software/release-history/zafavfw.html#15.4.062.17802
- MISChttps://www.zonealarm.com/software/release-history/zafree.html#15.4.062.17802
- MISChttps://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk142952
- MISChttp://www.securityfocus.com/bid/107254