CVE-2012-2753
First published: Tue Jun 19 2012(Updated: )
Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and E80.x on the VPN blade platform, Endpoint Security VPN R75, Endpoint Connect R73.x, and Remote Access Clients E75.x allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Checkpoint Endpoint Connect | =r73 | |
| Checkpoint Endpoint Security Clients | =e80 | |
| Checkpoint Endpoint Security Clients | =e80.10 | |
| Checkpoint Endpoint Security Clients | =e80.20 | |
| Checkpoint Endpoint Security Clients | =e80.30 | |
| Checkpoint Endpoint Security Clients | =r73 | |
| Checkpoint Endpoint Security VPN | =r75 | |
| Checkpoint Remote Access Clients | =e75 | |
| Checkpoint Remote Access Clients | =e75.10 | |
| Checkpoint Remote Access Clients | =e75.20 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2012-2753?
CVE-2012-2753 has a high severity rating, as it allows local users to gain elevated privileges through an untrusted search path vulnerability.
How do I fix CVE-2012-2753?
To fix CVE-2012-2753, users should update to the latest version of Check Point Endpoint Security that addresses this vulnerability.
Which software versions are affected by CVE-2012-2753?
CVE-2012-2753 affects Check Point Endpoint Connect R73, R75, Endpoint Security E80.x, and Remote Access Clients E75.x.
What are the potential impacts of CVE-2012-2753?
The potential impact of CVE-2012-2753 includes unauthorized privilege escalation, which could lead to further exploitation of the system.
Is CVE-2012-2753 a common vulnerability?
CVE-2012-2753 is a known vulnerability that has been reported and recognized in various security advisories and databases.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/remedy
- agent/author
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/checkpoint
- canonical/checkpoint endpoint connect
- version/checkpoint endpoint connect/r73
- canonical/checkpoint endpoint security clients
- version/checkpoint endpoint security clients/e80
- version/checkpoint endpoint security clients/e80.10
- version/checkpoint endpoint security clients/e80.20
- version/checkpoint endpoint security clients/e80.30
- version/checkpoint endpoint security clients/r73
- canonical/checkpoint endpoint security vpn
- version/checkpoint endpoint security vpn/r75
- canonical/checkpoint remote access clients
- version/checkpoint remote access clients/e75
- version/checkpoint remote access clients/e75.10
- version/checkpoint remote access clients/e75.20