5 matches found
EUVD-2007-5025
Malware in sbrugna...
Design/Logic Flaw
ZoneAlarm Pro 7.0.362.000 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via the 1 NtCreatePort and 2 NtDeleteFile kernel SSDT hooks, a partial...
CVE-2007-2083
This CVE (CVE-2007-2083) affects ZoneAlarm Pro and is caused by vsdatant.sys not validating arguments passed to hooked SSDT function handlers, enabling local attackers to crash the system or possibly execute arbitrary code via crafted arguments to NtCreateKey and NtDeleteFile. Affected product: Z...
CVE-2007-2083
vsdatant.sys in Check Point Zone Labs ZoneAlarm Pro before 7.0.302.000 does not validate certain arguments before being passed to hooked SSDT function handlers, which allows local users to cause a denial of service system crash or possibly execute arbitrary code via crafted arguments to the 1...
KLA10412 ACE vulnerability in ZoneAlarm
A lack of argument validation was found in ZoneAlarm. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited locally via specially designed arguments. Original advisories - Related products ZoneAlarm-Pro...