Vulnerability Details CVE-2013-5635
Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by entering password guesses within multiple Unlock.exe processes that are running simultaneously.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.2%
CVSS Severity
CVSS v2 Score 3.3
References
- http://www.digitalsec.net/stuff/explt+advs/CheckPoint_EndPoint_EPM_Explorer.txt
- https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96589
- http://www.digitalsec.net/stuff/explt+advs/CheckPoint_EndPoint_EPM_Explorer.txt
- https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96589
Products affected by CVE-2013-5635
-
cpe:2.3:a:checkpoint:endpoint_security:e80
-
cpe:2.3:a:checkpoint:endpoint_security:e80.10
-
cpe:2.3:a:checkpoint:endpoint_security:e80.20
-
cpe:2.3:a:checkpoint:endpoint_security:e80.30
-
cpe:2.3:a:checkpoint:endpoint_security:e80.40
-
cpe:2.3:a:checkpoint:endpoint_security:e80.41
-
cpe:2.3:a:checkpoint:endpoint_security:e80.50