Computer Security
[EN] no-pyccku

Checkpoint ZoneAlarm multiple privilege escalations
SecurityVulns ID:8075
Threat Level:
Description:Vsdatant.sys driver multiple IOCTLs buffer overflows. Weak permissions for executable files.
Affected:CHECKPOINT : ZoneAlarm 7.0
CVE:CVE-2007-4216 (vsdatant.sys 6.5.737.0 in Check Point Zone Labs ZoneAlarm before 7.0.362 allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in a METHOD_NEITHER (1) IOCTL 0x8400000F or (2) IOCTL 0x84000013 request, which can be used to overwrite arbitrary memory locations.)
Original documentdocumentIDEFENSE, iDefense Security Advisory 08.20.07: Check Point Zone Labs Multiple Products Privilege Escalation Vulnerability (21.08.2007)
 documentIDEFENSE, iDefense Security Advisory 08.20.07: Check Point Zone Labs VSDATANT Multiple IOCTL Privilege Escalation Vulnerabilities (21.08.2007)
 documentReversemode, [Reversemode Advisory] CheckPoint ZoneLabs Vsdatant.sys multiple local privilege escalation vulnerabilities (21.08.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod