Path Traversal Vulnerability in Check Point Endpoint Security Client for Windows VPN

Path Traversal Vulnerability in Check Point Endpoint Security Client for Windows VPN

CVE-2019-8459 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Check Point Endpoint Security Client for Windows, with the VPN blade, before version E80.83, starts a process without using quotes in the path. This can cause loading of a previously placed executable with a name similar to the parts of the path, instead of the intended one.

Learn more about our Web Application Penetration Testing UK.