CVE-2006-0255 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2006-0255

Unquoted Windows search path vulnerability in Check Point VPN-1 SecureClient might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run when SecureClient attempts to launch the Sr_GUI.exe program.

Published: Jan 18, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-0255
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
checkpoint / vpn-1	4.1-sp6	4.1-sp6.x
checkpoint / vpn-1	4.1	4.1.x
checkpoint / vpn-1	4.1-sp3	4.1-sp3.x
checkpoint / vpn-1	4.1-sp4	4.1-sp4.x
checkpoint / vpn-1	4.1-sp1	4.1-sp1.x
checkpoint / vpn-1	4.1-sp5	4.1-sp5.x
checkpoint / vpn-1	-	-
checkpoint / vpn-1	4.1-sp5a	4.1-sp5a.x
checkpoint / vpn-1	4.1-sp2	4.1-sp2.x