Vulnerability Details CVE-2007-2467
ZoneAlarm Pro 6.5.737.000, 6.1.744.001, and possibly earlier versions and other products, allows local users to cause a denial of service (system crash) by sending malformed data to the vsdatant device driver, which causes an invalid memory access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.9%
CVSS Severity
CVSS v2 Score 4.9
References
- http://osvdb.org/35240
- http://secunia.com/advisories/25064
- http://www.matousec.com/info/advisories/ZoneAlarm-Insufficient-validation-of-vsdatant-driver-input-buffer.php
- http://www.securityfocus.com/archive/1/467269/100/0/threaded
- http://www.securityfocus.com/bid/23734
- http://www.vupen.com/english/advisories/2007/1608
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34028
- http://osvdb.org/35240
- http://secunia.com/advisories/25064
- http://www.matousec.com/info/advisories/ZoneAlarm-Insufficient-validation-of-vsdatant-driver-input-buffer.php
- http://www.securityfocus.com/archive/1/467269/100/0/threaded
- http://www.securityfocus.com/bid/23734
- http://www.vupen.com/english/advisories/2007/1608
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34028