CVE-2013-5636 - OpenCVE

Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a device ID, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by overwriting DVREM.EPM with a copy of itself after each few password guesses.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

AV:L/AC:M/Au:N/C:P/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Checkpoint	Endpoint Security

Configuration 1 [-]

OR	cpe:2.3:a:checkpoint:endpoint_security:e80:-:vpn_blade:::::*
	cpe:2.3:a:checkpoint:endpoint_security:e80.10:-:vpn_blade:::::*
	cpe:2.3:a:checkpoint:endpoint_security:e80.20:-:vpn_blade:::::*
	cpe:2.3:a:checkpoint:endpoint_security:e80.30:-:vpn_blade:::::*
	cpe:2.3:a:checkpoint:endpoint_security:e80.40:-:vpn_blade:::::*
	cpe:2.3:a:checkpoint:endpoint_security:e80.41:-:vpn_blade:::::*
	cpe:2.3:a:checkpoint:endpoint_security:e80.50:-:vpn_blade:::::*

No data.

References

Link	Providers
http://www.digitalsec.net/stuff/explt+advs/CheckPoint_EndPoint_EPM_Explorer.txt
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96589

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2013-11-30T11:00:00

Updated: 2024-08-06T17:15:21.446Z

Reserved: 2013-08-27T00:00:00

Link: CVE-2013-5636

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2013-11-30T11:43:54.647

Modified: 2013-12-02T17:29:59.747

Link: CVE-2013-5636

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-11-13T00:00:00", "descriptions": [{"lang": "en", "value": "Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a device ID, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by overwriting DVREM.EPM with a copy of itself after each few password guesses."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2013-12-01T17:26:34", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.digitalsec.net/stuff/explt+advs/CheckPoint_EndPoint_EPM_Explorer.txt"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96589"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2013-5636", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a device ID, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by overwriting DVREM.EPM with a copy of itself after each few password guesses."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.digitalsec.net/stuff/explt+advs/CheckPoint_EndPoint_EPM_Explorer.txt", "refsource": "MISC", "url": "http://www.digitalsec.net/stuff/explt+advs/CheckPoint_EndPoint_EPM_Explorer.txt"}, {"name": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96589", "refsource": "CONFIRM", "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96589"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T17:15:21.446Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.digitalsec.net/stuff/explt+advs/CheckPoint_EndPoint_EPM_Explorer.txt"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96589"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2013-5636", "datePublished": "2013-11-30T11:00:00", "dateReserved": "2013-08-27T00:00:00", "dateUpdated": "2024-08-06T17:15:21.446Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e80:-:vpn_blade:*:*:*:*:*", "matchCriteriaId": "411DFCC1-0B71-456C-833F-4D423AAE67FF", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e80.10:-:vpn_blade:*:*:*:*:*", "matchCriteriaId": "25E330FE-2BCB-4887-BDF7-5956C3ADA26A", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e80.20:-:vpn_blade:*:*:*:*:*", "matchCriteriaId": "B562E6A4-65AB-4139-B497-9D3D5BE51E46", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e80.30:-:vpn_blade:*:*:*:*:*", "matchCriteriaId": "5A1E05B2-8FB6-4694-8AE8-24FAEE1C632B", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e80.40:-:vpn_blade:*:*:*:*:*", "matchCriteriaId": "B5E24572-22FE-442E-B9B1-FBD9BDE6148B", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e80.41:-:vpn_blade:*:*:*:*:*", "matchCriteriaId": "E62DA812-690D-41D3-9408-49E33379B8F5", "vulnerable": true}, {"criteria": "cpe:2.3:a:checkpoint:endpoint_security:e80.50:-:vpn_blade:*:*:*:*:*", "matchCriteriaId": "C467BC8A-E75D-4499-80E6-C813DFDF121C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures with a device ID, which makes it easier for physically proximate attackers to bypass the device-locking protection mechanism by overwriting DVREM.EPM with a copy of itself after each few password guesses."}, {"lang": "es", "value": "Unlock.exe en Media Encryption EPM Explorer de Check Point Endpoint Security hasta la versi\u00f3n E80.50 no asocia fallos en la introducci\u00f3n de contrase\u00f1a junto a un identificador del dispositivo, lo que hace m\u00e1s sencillo a atacantes f\u00edsicamente pr\u00f3ximos evadir mecanismos de protecci\u00f3n device-locking mediante la sobreescritura del DVREM.EPM con una copia de s\u00ed mismo, despu\u00e9s de algunos intentos de adivinaci\u00f3n de contrase\u00f1a."}], "id": "CVE-2013-5636", "lastModified": "2013-12-02T17:29:59.747", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 3.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:M/Au:N/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-11-30T11:43:54.647", "references": [{"source": "cve@mitre.org", "url": "http://www.digitalsec.net/stuff/explt+advs/CheckPoint_EndPoint_EPM_Explorer.txt"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk96589"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-255"}], "source": "nvd@nist.gov", "type": "Primary"}]}