CVE-2020-6021 – Check Point Endpoint Security Client for Windows before version E84.20 allows write access …

3 December 2020

Vuln ID: CVE-2020-6021

Published: 2020-12-03 14:15:11Z

Description: Check Point Endpoint Security Client for Windows before version E84.20 allows write access to the directory from which the installation repair takes place. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a specially crafted DLL in the repair folder which will run with the Endpoint clientâ€™s privileges.

Source: NVD.NIST.GOV

Date:

3 December 2020

Categorie(s):

NVD

Tag(s):

NVD

Hackers Target Middle East Governments with Evasive “CR4T” Backdoor19 April 2024
6 Surprising Ways Hackers Can Exploit Your Smart Home Devices19 April 2024
Protobom: Open-source software supply chain tool19 April 2024
The key pillars of domain security19 April 2024
Fraudsters abused Apple Stores’ third-party pickup policy to phish for profits19 April 2024