Lucene search

[email protected]CVE-2007-5044

HistorySep 24, 2007 - 12:17 a.m.

CVE-2007-5044

2007-09-2400:17:00

CWE-264

[email protected]

web.nvd.nist.gov

cve-2007-5044

zonealarm pro

ssdt

ntcreateport

ntdeletefile

denial of service

privilege escalation

nvd

6.6 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

ZoneAlarm Pro 7.0.362.000 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via the (1) NtCreatePort and (2) NtDeleteFile kernel SSDT hooks, a partial regression of CVE-2007-2083.

CPENameOperatorVersion
zonelabs:zonealarmzonelabs zonealarmeq7.0.362.000

CPE	Name	Operator	Version
zonelabs:zonealarm	zonelabs zonealarm	eq	7.0.362.000

References

osvdb.org/45898

securityreason.com/securityalert/3161

www.matousec.com/info/advisories/plague-in-security-software-drivers.php

www.matousec.com/projects/windows-personal-firewall-analysis/plague-in-security-software-drivers.php

www.securityfocus.com/archive/1/479830/100/0/threaded

6.6 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2007-5044

prion2 cve1 kaspersky1 securityvulns1