Unrated severityNVD Advisory· Published Apr 29, 2019· Updated Aug 4, 2024
CVE-2019-8454
CVE-2019-8454
Description
A local attacker can create a hard-link between a file to which the Check Point Endpoint Security client for Windows before E80.96 writes and another BAT file, then by impersonating the WPAD server, the attacker can write BAT commands into that file that will later be run by the user or the system.
Affected products
2- Range: <E80.96
- Range: before E80.96
Patches
Vulnerability mechanics
References
1- supportcenter.us.checkpoint.com/supportcenter/portalmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.