CVE-2018-8790 - Check Point ZoneAlarm version 15.3.064.17729 and below expose a WCF service that can allow a local l

CVE-2018-8790

Summary

Check Point ZoneAlarm version 15.3.064.17729 and below expose a WCF service that can allow a local low privileged user to execute arbitrary code as SYSTEM.

References

Vulnerable Configurations

cpe:2.3:a:checkpoint:zonealarm:-:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:-:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:5.0.63.0:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:5.0.63.0:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:6.1.744.001:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:6.1.744.001:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:7.0.337.0:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:7.0.337.0:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:10.2.068.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:10.2.068.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:10.2.072.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:10.2.072.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:10.2.073.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:10.2.073.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:10.2.074.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:10.2.074.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:10.2.078.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:10.2.078.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.000.018:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.000.018:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.000.020:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.000.020:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.000.038:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.000.038:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.000.054:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.000.054:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.000.057:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.000.057:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.000.504:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.000.504:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.768.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.768.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.780.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:11.0.780.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:12.0.104.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:12.0.104.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:12.0.118.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:12.0.118.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:13.0.208.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:13.0.208.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:13.1.211.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:13.1.211.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:13.2.015.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:13.2.015.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:13.3.052.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:13.3.052.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:13.3.209.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:13.3.209.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.0.157.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.0.157.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.0.508.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.0.508.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.0.522.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.0.522.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.1.011.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.1.011.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.1.048.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.1.048.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.1.057.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.1.057.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.2.255.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.2.255.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.3.119.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:14.3.119.000:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.0.123.17051:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.0.123.17051:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.0.139.17085:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.0.139.17085:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.0.156.17126:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.0.156.17126:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.0.159.17147:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.0.159.17147:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.1.501.17249:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.1.501.17249:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.1.522.17528:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.1.522.17528:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.2.053.17581:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.2.053.17581:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.3.060.17669:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.3.060.17669:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.3.064.17729:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:15.3.064.17729:*:*:*:*:*:*:*

CVSS

Base:	7.2 (as of 09-10-2019 - 23:42)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:L/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	107254
misc	https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk142952 https://www.zonealarm.com/software/release-history/zafavfw.html#15.4.062.17802 https://www.zonealarm.com/software/release-history/zafree.html#15.4.062.17802

Last major update

09-10-2019 - 23:42

Published

01-03-2019 - 16:29

Last modified

09-10-2019 - 23:42