A security issue in Check Point’s free edition of ZoneAlarm antivirus and firewall solution allowed a user with limited rights on the machine to inject and execute code with the highest privileges. The glitch originated from an insecure implementation of inter-process communications within ZoneAlarms. Anastasio of Illumant security assessments and compliance company discovered in the product aNET application that exposed a Windows Communication Foundation (WCF) service that was running with SYSTEM rights and could be exploited to elevate privileges to a local attacker. A video showing how the exploit worked is available below.
Source: https://www.bleepingcomputer.com/news/security/check-point-fixes-privilege-escalation-bug-in-zonealarm-free/