Zone Labs ZoneAlarm 2.1 Personal Firewall Port 67 Vulnerability

2000-04-24T00:00:00
ID EDB-ID:19871
Type exploitdb
Reporter Wally Whacker
Modified 2000-04-24T00:00:00

Description

Zone Labs ZoneAlarm 2.1 Personal Firewall Port 67 Vulnerability. CVE-2000-0339. Remote exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/1137/info

Certain versions of Zone Labs personal Firewall have a vulnerability which allows malicious users to port scan the firewall without being detected. In particular if the port scan originates from source port 67 on the attacking host the ZoneAlarm fails to register the attack.

nmap -g67 -P0 -p130-140 -sU <targethost>