matousec.com (site map)

Poll

On Windows 7 (or Vista) I use

  unlimited administrator's account (58.06%)

  limited administrator's account (16.33%)

  common user's account (12.76%)

  nothing (I do not use Win 7/Vista) (13.72%)

more

results

Advisory 2007-05-01.01

ZoneAlarm Insufficient validation of 'vsdatant' driver input buffer Vulnerability

Basic information:


Release date: May 1, 2007

Last update: May 15, 2007

Severity:Medium

Character:System crash

Status:Fixed

Testing program: BTP00003P000ZA.zip

Description:

ZoneAlarm insufficiently protects its driver \Device\vsdatant against a manipulation by malicious applications and it fails to validate its input buffer. It is possible to open the driver's device and send arbitrary data to it, which are implicitly believed to be valid. It is possible to assemble the data in the input buffer such that the driver performs an invalid memory operation and crashes the whole operating system. Further impacts of this bug (like arbitrary code execution in the kernel mode) were not examined.

Vulnerable software:

Not vulnerable software:

Events:

References: