ZoneAlarm VSMON.exe Local Privilege Escalation

The remote host is running ZoneAlarm, a firewall for Windows. The TrueVector service associated with the version of ZoneAlarm installed on the remote host loads as part of its startup several necessary DLLs without specifying their pathnames. An attacker with local access can exploit this flaw to...

ZoneAlarm < 6.1.744.001 VSMON.exe Path Subversion Local Privilege Escalation

Binary data 3493.prm...

CVE-2006-1221

The CVE concerns ZoneAlarm’s TrueVector service (VSMON.exe) on ZoneLabs ZoneAlarm 6.x/Integrity. The vulnerability arises because VSMON loads several DLLs at startup without fully qualifying their path, allowing an attacker with local access to place malicious DLLs in insecure folders that are se...

CVE-2004-0309

CVE-2004-0309 is a stack-based buffer overflow in the SMTP service support (vsmon.exe) used by Zone Labs ZoneAlarm (before 4.5.538.001) and ZoneLabs Integrity client (before 4.0.146.046 and 4.5.085). The vulnerability exists in the SMTP protocol processing function and can be triggered by long RC...