ZoneAlarm Advertising Blocking Denial of Service Vulnerability

From: JM Tella Llop [MVP Windows] (jmtella_at_XXXmvps.org)
Date: 11/21/04

Next message: JM Tella Llop [MVP Windows]: "The acronym ATK stands for Attack Tool Kit"
Previous message: JM Tella Llop [MVP Windows]: "IBM HTTP Server Denial of Service Vulnerabilities"
Messages sorted by: [ date ] [ thread ]

Date: Sun, 21 Nov 2004 19:10:04 +0100

Secunia Advisory: SA13244 Print Advisory
Release Date: 2004-11-19

Critical:
Less critical
Impact: DoS
Where: From remote
Solution Status: Vendor Patch

Software: ZoneAlarm Pro 3.x
ZoneAlarm Pro 4.x
ZoneAlarm Pro 5.x
ZoneAlarm Security Suite 5.x

Select a product and view a complete list of all Patched/Unpatched
Secunia advisories affecting it.

Description:
Nicolas Robillard has reported a vulnerability in ZoneAlarm Pro and
ZoneAlarm Security Suite, which can be exploited by malicious people
to cause a DoS (Denial of Service).

The vulnerability is caused due to an error in the Ad-Blocking feature
(disabled by default) when processing JavaScript and can be exploited
by tricking a user into visiting a malicious web site containing
specially crafted JavaScript.

Successful exploitation causes the system to become unstable or stop
responding completely.

Solution:
Update to version 5.5.062 or later via the "Check For Update" feature.

Provided and/or discovered by:
Nicolas Robillard

Original Advisory:
http://download.zonelabs.com/bin/free/securityAlert/18.html

-- 
Jose Manuel Tella Llop
MVP - Windows
jmtella@XXXcompuserve.com   (quitar XXX)
http://www.multingles.net/jmt.htm
Este mensaje se proporciona "como está" sin garantías de ninguna 
clase, y no otorga ningún derecho.
This posting is provided "AS IS" with no warranties, and confers no 
rights.
         You assume all risk for your use.

Next message: JM Tella Llop [MVP Windows]: "The acronym ATK stands for Attack Tool Kit"
Previous message: JM Tella Llop [MVP Windows]: "IBM HTTP Server Denial of Service Vulnerabilities"
Messages sorted by: [ date ] [ thread ]

Relevant Pages

NSSI-2002-zonealarm3: ZoneAlarm Pro Denial of Service Vulnerability
... Subject: NSSI-2002-zonealarm3: ZoneAlarm Pro Denial of Service ... ZoneAlarm Pro 3.1 and 3.0 Denial of Service Vulnerability ... This vulnerability is confirmed by the vendor. ... Denial of Service Attack through sending multiple syn packets / ...
(comp.security.firewalls)
ZoneAlarm Pro 3.1 and 3.0 Denial of Service Vulnerability
... ZoneAlarm Pro 3.1 and 3.0 Denial of Service Vulnerability ... Denial of Service Attack through Synflooding that would cause the machine to ...
(NT-Bugtraq)
Re: NSSI-2002-zonealarm3: ZoneAlarm Pro Denial of Service Vulnerability
... > NSSI Technologies Inc Research Labs Security Advisory ... > ZoneAlarm Pro 3.1 and 3.0 Denial of Service Vulnerability ... > ZoneAlarm Pro 3.1 and 3.0 doubles your protection with enhanced Ad ... > would result to Denial of Service Attack through Synflooding that would ...
(comp.security.firewalls)
ZoneAlarm Advertising Blocking Denial of Service Vulnerability
... ZoneAlarm Advertising Blocking Denial of Service Vulnerability ... ZoneAlarm Pro 4.x ... Secunia advisories affecting it. ... Nicolas Robillard ...
(microsoft.public.windowsxp.basics)
ZoneAlarm Advertising Blocking Denial of Service Vulnerability
... ZoneAlarm Advertising Blocking Denial of Service Vulnerability ... ZoneAlarm Pro 4.x ... Secunia advisories affecting it. ... Nicolas Robillard ...
(microsoft.public.windowsxp.accessibility)