Privilege Escalation in Check Point Zone Labs ZoneAlarm Products
CVE-2005-2932

Currently unrated

Key Information:

Vendor: Checkpoint
Status: Zonealarm Security Suite; Zonealarm
Vendor: CVE Published:; 31 December 2005

Summary

Multiple versions of Check Point Zone Labs ZoneAlarm software, specifically those prior to version 7.0.362, suffer from vulnerabilities due to insecure default file permissions. These flaws can be exploited by local users to gain elevated privileges or circumvent existing security controls, potentially leading to unauthorized access and manipulation of system functionality. Users are advised to update their software to mitigate the risk associated with these vulnerabilities.

References

http://secunia.com/advisories/26513

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2007/2929

vdb-entryx_refsource_VUPEN

https://exchange.xforce.ibmcloud.com/vulnerabilities/36110

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Dec 31, 2005
Vulnerability Reserved
Sep 15, 2005