vsdatant.sys in Zone Lab ZoneAlarm before 5.5.062.011, ZoneAlarm Wireless before 5.5.080.000, Check Point Integrity Client 4.x before 4.5.122.000 and 5.x before 5.1.556.166 do not properly verify that the ServerPortName argument to the NtConnectPort function is a valid memory address, which allows local users to cause a denial of service (system crash) when ZoneAlarm attempts to dereference an invalid pointer.
References
Link | Resource |
---|---|
http://download.zonelabs.com/bin/free/securityAlert/19.html | Patch Vendor Advisory |
http://secunia.com/advisories/14256 | |
http://www.idefense.com/application/poi/display?id=199&type=vulnerabilities | Patch Vendor Advisory |
http://www.securityfocus.com/bid/12531 | |
http://download.zonelabs.com/bin/free/securityAlert/19.html | Patch Vendor Advisory |
http://secunia.com/advisories/14256 | |
http://www.idefense.com/application/poi/display?id=199&type=vulnerabilities | Patch Vendor Advisory |
http://www.securityfocus.com/bid/12531 |
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:54
Type | Values Removed | Values Added |
---|---|---|
References | () http://download.zonelabs.com/bin/free/securityAlert/19.html - Patch, Vendor Advisory | |
References | () http://secunia.com/advisories/14256 - | |
References | () http://www.idefense.com/application/poi/display?id=199&type=vulnerabilities - Patch, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/12531 - |
Information
Published : 2005-02-11 05:00
Updated : 2024-11-20 23:54
NVD link : CVE-2005-0114
Mitre link : CVE-2005-0114
CVE.ORG link : CVE-2005-0114
JSON object : View
Products Affected
zonelabs
- zonealarm_wireless_security
- zonealarm
checkpoint
- check_point_integrity_client
CWE