CVE-2007-2083 in ZoneAlarminformazioni

Riassunto

di MITRE

vsdatant.sys in Check Point Zone Labs ZoneAlarm Pro before 7.0.302.000 does not validate certain arguments before being passed to hooked SSDT function handlers, which allows local users to cause a denial of service (system crash) or possibly execute arbitrary code via crafted arguments to the (1) NtCreateKey and (2) NtDeleteFile functions.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

17/04/2007

Divulgazione

17/04/2007

Moderazione

accettato

Voce

VDB-36228

CPE

pronto

CWE

CWE-119 (confermato)

Sfruttamento

Scaricare

CVSS

6.9 (NVD)

EPSS

0.00773

KEV

Attività

molto basso

Settore

Pharma, Industry, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-2083
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-2083
CVE Details	https://www.cvedetails.com/cve/CVE-2007-2083/

◂ Precedente Visione D'ensemble Il prossimo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!