Zone Labs (1) ZoneAlarm Pro 6.0, (2) ZoneAlarm Internet Security Suite 6.0, (3) ZoneAlarm Anti-Virus 6.0, (4) ZoneAlarm Anti-Spyware 6.0 through 6.1, and (5) ZoneAlarm 6.0 allow remote attackers to bypass the โAdvanced Program Control and OS Firewall filtersโ setting via URLs in โHTML Modal Dialogsโ (window.location.href) contained within JavaScript tags.