Main Vulnerability Database Exploits ID:5874 - Exploit for Permissions, Privileges, and Access Controls in ZoneAlarm and Endpoint Security client - CVE-2019-8452

ID:5874 - Exploit for Permissions, Privileges, and Access Controls in ZoneAlarm and Endpoint Security client - CVE-2019-8452

Published: June 17, 2021

Vulnerability identifier: #VU47347

Vulnerability risk: Low

CVE-ID: CVE-2019-8452

CWE-ID: CWE-264

Exploitation vector: Local access

Vulnerable software:
ZoneAlarm
Endpoint Security client

Link to public exploit:

https://www.exploit-db.com/exploits/47471/

Vulnerability description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to application does not properly impose security restrictions. A local user can change permissions of arbitrary file and gain elevated privileges on the target system.

Remediation

Install updates from vendor's website.

ID:5874 - Exploit for Permissions, Privileges, and Access Controls in ZoneAlarm and Endpoint Security client - CVE-2019-8452

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human