What the vulnerability does

01Description

Some of the DLLs loaded by Check Point ZoneAlarm up to 15.4.062 are taken from directories where all users have write permissions. This can allow a local attacker to replace a DLL file with a malicious one and cause Denial of Service to the client.

Key dates

02Disclosure timeline

April 17, 2019 CVE published
August 4, 2024 Record updated