48 matches found
EUVD-2007-2722
Malware in sbrugna...
EUVD-2007-5025
Malware in sbrugna...
EUVD-2004-0611
Malware in sbrugna...
EUVD-2007-2078
Malware in sbrugna...
EUVD-2005-3559
Malware in sbrugna...
EUVD-2004-1928
Malware in sbrugna...
EUVD-2007-2460
Malware in sbrugna...
EUVD-2002-1890
Malware in sbrugna...
CVE-2002-1911
ZoneAlarm Pro 3.0 and 3.1, when configured to block all traffic, allows remote attackers to cause a denial of service CPU and memory consumption via a large number of SYN packets SYN flood. NOTE: the vendor was not able to reproduce the issue...
Kaspersky AntiVirus - .DEX File Format Parsing Memory Corruption
Kaspersky AntiVirus - .DEX File Format Parsing Memory Corruption Source: https://code.google.com/p/google-security-research/issues/detail?id=519 Fuzzing the DEX file format found a crash that loads a function pointer from an attacker controlled pointer, on Windows this results in a call to an...
ZoneAlarm Pro 1.0/2.x Outbound Packet Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/3647/info Due to a common design error, it may be possible for outbound packets to bypass packet filtering in many personal firewalls. Many of these applications only block packets created by the standard Windows protocol...
Multiple Personal Firewall Products - Local Protection Mechanism Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23987/info Multiple personal firewall products are prone to a vulnerability that lets attackers bypass protection mechanisms. This issue occurs because the applications fail to properly implement protection mechanisms bas...
Design/Logic Flaw
ZoneAlarm Pro 7.0.362.000 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via the 1 NtCreatePort and 2 NtDeleteFile kernel SSDT hooks, a partial...
CVE-2007-5044
ZoneAlarm Pro 7.0.362.000 does not properly validate certain parameters to System Service Descriptor Table SSDT function handlers, which allows local users to cause a denial of service crash and possibly gain privileges via the 1 NtCreatePort and 2 NtDeleteFile kernel SSDT hooks, a partial...
CVE-2007-5044
CVE-2007-5044 affects ZoneAlarm Pro 7.0.362.000. The issue is insufficient validation of parameters passed to SSDT function handlers, enabling a local user to crash the system and potentially gain privileges via the kernel SSDT hooks for NtCreatePort and NtDeleteFile. This is described as a parti...
Break through the firewall of the KillFilter-vulnerability warning-the black bar safety net
Alas, the software firewall seems like no one my satisfaction, are relatively weak, consider not all. The domestic firewall is chilling to either DLL injection or not introduction of DLL pure code injection, or TDI Cilent, the domestic firewall get. NDIS hook not to mention that the.. To the poin...
ZoneAlarm Pro < 7.0.362.000 Local Privilege Escalation
Binary data 4181.prm...
CVE-2007-2730
Check Point ZoneAlarm Pro before 6.5.737.000 does not properly test for equivalence of process identifiers for certain Microsoft Windows API functions in the NT kernel 5.0 and greater, which allows local users to call these functions, and bypass firewall rules or gain privileges, via a modified...
CVE-2007-2730
Technical details about CVE-2007-2730 are not publicly provided in the supplied documents. No explicit affected products, root cause, or fixes are described here. Monitor for updates from official advisories.
Bypassing PFW/HIPS open process control with uncommon identifier
Hello, We would like to inform you about a vulnerability in personal firewalls and HIPS software. Description: Windows operating systems with NT kernel version 5.0 and higher i.e. Windows 2000, XP, 2003 use integer numbers divisible by four to identify processes. Internal implementation of system...