Описание
vsdatant.sys 6.5.737.0 in Check Point Zone Labs ZoneAlarm before 7.0.362 allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in a METHOD_NEITHER (1) IOCTL 0x8400000F or (2) IOCTL 0x84000013 request, which can be used to overwrite arbitrary memory locations.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.0.337.0 (включая)
Одно из
cpe:2.3:a:checkpoint:zonealarm:*:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:5.0.63.0:*:*:*:*:*:*:*
cpe:2.3:a:checkpoint:zonealarm:6.1.744.001:*:*:*:*:*:*:*
EPSS
Процентиль: 18%
0.00058
Низкий
7.2 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
почти 4 года назад
vsdatant.sys 6.5.737.0 in Check Point Zone Labs ZoneAlarm before 7.0.362 allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in a METHOD_NEITHER (1) IOCTL 0x8400000F or (2) IOCTL 0x84000013 request, which can be used to overwrite arbitrary memory locations.
EPSS
Процентиль: 18%
0.00058
Низкий
7.2 High
CVSS2
Дефекты
CWE-20