Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A local attacker can create a hard-link between a file to which the Check Point Endpoint Security client for Windows before E80.96 writes and another BAT file, then by impersonating the WPAD server, the attacker can write BAT commands into that file that will later be run by the user or the system.
CVSS Information
N/A
Vulnerability Type
Windows硬链接
Vulnerability Title
Check Point Endpoint Security 后置链接漏洞
Vulnerability Description
Check Point Endpoint Security是以色列Check Point公司的一套终端安全防护软件。 基于Windows平台的Check Point Endpoint Security客户端E80.96及之前版本中存在后置链接漏洞。攻击者可通过伪造WPAD服务器利用该漏洞向文件中写入BAT命令。
CVSS Information
N/A
Vulnerability Type
N/A