ZoneAlarm Personal Firewall < 6.0.667.000 Multiple Vulnerabilities

High Nessus Network Monitor Plugin ID 3227

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

The remote host is running ZoneAlarm, a personal firewall for the Windows platform. The client is running a version of ZoneAlarm that is less than 6.0.667.000. This version of ZoneAlarm is reported vulnerable to a number of flaws that can render the firewall unuseable or, in some instances, give the users a false sense of security.

Solution

Upgrade to version 6.0.667.000 or higher.

See Also

http://www.zonelabs.com

Plugin Details

Severity: High

ID: 3227

Family: Generic

Published: 2005/09/16

Modified: 2018/09/16

Dependencies: 2722

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.5

Temporal Score: 7.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:F/RL:U/RC:ND

CVSSv3

Base Score: 7.3

Temporal Score: 7.1

Vector: CVSS3#AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS3#E:F/RL:U/RC:X

Vulnerability Information

CPE: cpe:/a:zonelabs:zonealarm

Reference Information

CVE: CVE-2005-3560

BID: 15347