CVE-2013-5635
low
CVSS v3
—
CVSS v2
3.3
VIR risk
3.3
Description
Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by entering password guesses within multiple Unlock.exe processes that are running simultaneously.
Predictions
Exploit likelihood
20%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: cve@mitre.org — https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96589
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| checkpoint | endpoint_security | e80 | |
| checkpoint | endpoint_security | e80.10 | |
| checkpoint | endpoint_security | e80.20 | |
| checkpoint | endpoint_security | e80.30 | |
| checkpoint | endpoint_security | e80.40 | |
| checkpoint | endpoint_security | e80.41 | |
| checkpoint | endpoint_security | e80.50 | |
References
- http://www.digitalsec.net/stuff/explt+advs/CheckPoint_EndPoint_EPM_Explorer.txt
- https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96589
- http://www.digitalsec.net/stuff/explt+advs/CheckPoint_EndPoint_EPM_Explorer.txt
- https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96589
CWEs
CWE-255
Verify integrity in audit chain (admin only). AS-IS.