Zone Labs Product Range - Local hacker automatic control
Version: | Various |
Technical Details: | Two separate issues in the ZoneAlarm family of products have been identified. The first is an insecure permissions set in the default file ACL that allows a local unprivileged user to gain privilege escalation and control over the system, while the second is a failure to adequately validate input parameters in the IOCTL code within the vsdatant.sys driver. This leads to arbitrary code execution at the kernel level. |
Description: |
iDefense have provided detailed reporting on two issues affecting the Zone Labs ZoneAlarm family of antimalware and protective security software. Both issues can allow a local unprivileged user to take complete control over the local system as a result of poor default permissions and the poor handling of user input passed to certain supplied drivers. |
Mitigation: |
Zone Labs have updated their products to version 7.0.362 to address this vulnerability. Users and administrators should consider updating to this latest version. |
Updates: |
http://www.zonealarm.com/store/content/catalog/products/trial_zaFamily/trial_zaFamily.jsp |
Source: |
http://labs.idefense.com/intelligence/vulnerabilities/ |
Exploits: |
|
External Tracking Data: | CVE ID: CVE-2005-2932 CVE-ID: CVE-2007-4216 |
Social bookmark this page