CVE-2012-2753
Published Jun 19, 2012
Last updated 12 years ago
Overview
- Description
- Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and E80.x on the VPN blade platform, Endpoint Security VPN R75, Endpoint Connect R73.x, and Remote Access Clients E75.x allows local users to gain privileges via a Trojan horse DLL in the current working directory.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.9
- Impact score
- 10
- Exploitability score
- 3.4
- Vector string
- AV:L/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Evaluator
- Comment
- Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path'
- Impact
- -
- Solution
- -
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:checkpoint:endpoint_connect:r73:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1153CE1D-5228-484C-97A5-A8DC2810638C"
},
{
"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e80:-:vpn_blade:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "411DFCC1-0B71-456C-833F-4D423AAE67FF"
},
{
"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e80.10:-:vpn_blade:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "25E330FE-2BCB-4887-BDF7-5956C3ADA26A"
},
{
"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e80.20:-:vpn_blade:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B562E6A4-65AB-4139-B497-9D3D5BE51E46"
},
{
"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e80.30:-:vpn_blade:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A1E05B2-8FB6-4694-8AE8-24FAEE1C632B"
},
{
"criteria": "cpe:2.3:a:checkpoint:endpoint_security:r73:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "020E1329-9D13-421D-8475-BB7F159DB82C"
},
{
"criteria": "cpe:2.3:a:checkpoint:endpoint_security_vpn:r75:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FEC71EAB-E222-4E73-97F6-29975093A1F9"
},
{
"criteria": "cpe:2.3:a:checkpoint:remote_access_clients:e75:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "52DEDD86-1972-484E-8D2F-7EDAB8FFCFA7"
},
{
"criteria": "cpe:2.3:a:checkpoint:remote_access_clients:e75.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9B14BF3D-4D60-4775-8392-6CD322A88414"
},
{
"criteria": "cpe:2.3:a:checkpoint:remote_access_clients:e75.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CF6B60FE-0662-4208-9A24-5E21118CC4FA"
}
],
"operator": "OR"
}
]
}
]