ZoneAlarm Pro < 7.0.362.000 Local Privilege Escalation

High Nessus Network Monitor Plugin ID 4181

Synopsis

The remote host is vulnerable to multiple local 'privilege escalation' flaws.

Description

The remote host is running ZoneAlarm, a firewall for Windows. The vendor has released version 7.0.362.000 of ZoneAlarm. This version corrects a flaw where a local user can disable the firewall or escalate privileges due to incorrect access control lists on local configuration files and device drivers.

Solution

Upgrade to version 7.0.362.000 or higher.

See Also

http://www.zonelabs.com

Plugin Details

Severity: High

ID: 4181

File Name: 4181.prm

Family: Generic

Published: 2007/08/20

Modified: 2016/01/22

Dependencies: 2722

Risk Information

Risk Factor: High

CVSSv2

Base Score: 7.2

Temporal Score: 6

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

CVSSv3

Base Score: 8.4

Temporal Score: 7.8

Vector: CVSS3#AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS3#E:F/RL:O/RC:C

Exploitable With

Core Impact

Reference Information

CVE: CVE-2007-4216, CVE-2005-2932

BID: 25365