CVE-2007-5044
Severity Score
6.9
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
ZoneAlarm Pro 7.0.362.000 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via the (1) NtCreatePort and (2) NtDeleteFile kernel SSDT hooks, a partial regression of CVE-2007-2083.
ZoneAlarm Pro 7.0.362.000 no valida de forma adecuada ciertos parámetros en los maneadores de función System Service Descriptor Table (SSDT), lo cual permite a usuarios locales provocar denegación de servicio (caida) y posiblemente ganar privilegios a través del secuestro de (1) NtCreatePort y (2) NtDeleteFile kernel SSDT, una regresión parcial de CVE-2007-2083.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2007-09-23 CVE Reserved
- 2007-09-24 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/45898 | Vdb Entry | |
| http://securityreason.com/securityalert/3161 | Third Party Advisory | |
| http://www.matousec.com/info/advisories/plague-in-security-software-drivers.php | X_refsource_misc | |
| http://www.matousec.com/projects/windows-personal-firewall-analysis/plague-in-security-software-drivers.php | X_refsource_misc | |
| http://www.securityfocus.com/archive/1/479830/100/0/threaded | Mailing List |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Zonelabs Search vendor "Zonelabs" | Zonealarm Search vendor "Zonelabs" for product "Zonealarm" | 7.0.362.000 Search vendor "Zonelabs" for product "Zonealarm" and version "7.0.362.000" | pro |
Affected
| ||||||