Zonelabs: Security Vulnerabilities
MailSafe in Zone Labs ZoneAlarm 2.6 and earlier and ZoneAlarm Pro 2.6 and 2.4 does not block prohibited file types with long file names, which allows remote attackers to send potentially dangerous attachments.
CVSS Score
5.0
EPSS Score
0.006
Published
2001-07-18
ZoneAlarm 2.1.10 and earlier does not filter UDP packets with a source port of 67, which allows remote attackers to bypass the firewall rules.
CVSS Score
7.5
EPSS Score
0.034
Published
2000-04-24
ZoneAlarm sends sensitive system and network information in cleartext to the Zone Labs server if a user requests more information about an event.
CVSS Score
5.0
EPSS Score
0.006
Published
2000-02-24
Page 3