Check Point ZoneAlarm 8.8.1.110 – Local Privilege Escalation

Exploit Database
95 阅读

作者： Chris Anastasio

日期： 2019-01-17
类别：
- local
平台：
- windows
来源：https://www.exploit-db.com/exploits/46189/

# Exploit Title: Check Point ZoneAlarm Local Privilege Escalation
# Date: 1/16/19
# Exploit Author: Chris Anastasio
# Vendor Homepage: https://www.zonealarm.com/software/free-antivirus/
# Software Link: Vulnerable Versions included in repo
# Version:
ZoneAlarm Free Antivirus + Firewall version: 15.3.064.17729
Vsmon version: 15.3.58.17668
Driver version: 15.1.29.17237
Antivirus engine version: 8.8.1.110
Antivirus signature DAT file version: 1297458144
# Tested on: Windows 7/Windows 10
# Vendor Disclosure: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk142952

POC:

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/46189.zip

last Exploits
Check Point ZoneAlarm 8.8.1.110 – Local Privilege Escalation的更多信息

Microsoft Windows – UAC Protection Bypass (Via Slui File Handler Hijack) (PowerShell)：
Mediacoder 0.7.3.4605 – Local Buffer Overflow：
Zortam MP3 Media Studio 24.15 – Local Buffer Overflow (SEH)：
NProtect Anti-Virus 2007 < 2010.5.11.1 - Local Privilege Escalation：
AudioCoder (.lst) – Local Buffer Overflow (Metasploit)：
DVD X Player Standard 5.5.3.9 – Buffer Overflow：
Apple Mac OSX < 10.7.5/10.8.2/10.9.5/10.10.2 - 'Rootpipe' Local Privilege Escalation：
Reaper 5.78 – Local Buffer Overflow：