ZoneAlarm Pro < 7.0.362.000 Local Privilege Escalation

high Nessus Network Monitor Plugin ID 4181

Synopsis

The remote host is vulnerable to multiple local 'privilege escalation' flaws.

Description

The remote host is running ZoneAlarm, a firewall for Windows. The vendor has released version 7.0.362.000 of ZoneAlarm. This version corrects a flaw where a local user can disable the firewall or escalate privileges due to incorrect access control lists on local configuration files and device drivers.

Solution

Upgrade to version 7.0.362.000 or higher.

See Also

http://www.zonelabs.com

Plugin Details

Severity: High

ID: 4181

Family: Generic

Published: 8/20/2007

Updated: 3/6/2019

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: High

Base Score: 7.2

Temporal Score: 6

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS v3

Risk Factor: High

Base Score: 8.4

Temporal Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:checkpoint:zonealarm

Exploitable With

Core Impact

Reference Information

CVE: CVE-2005-2932, CVE-2007-4216

BID: 25365