CVE-2003-1309

Published: Nov 30, 2006

Modified: Aug 8, 2024

PUBLISHED

Description

The DeviceIoControl function in the TrueVector Device Driver (VSDATANT) in ZoneAlarm before 3.7.211, Pro before 4.0.146.029, and Plus before 4.0.146.029 allows local users to gain privileges via certain signals (aka "Device Driver Attack").

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

4362

vdb-entry

x_refsource_OSVDB

8342

vdb-entry

x_refsource_BID

device-driver-gain-privileges(12824)

vdb-entry

x_refsource_XF

http://download.zonelabs.com/bin/free/information/znalm/zaReleaseHistory.html

x_refsource_CONFIRM

http://sec-labs.hack.pl/papers/win32ddc.php

x_refsource_MISC

http://sec-labs.hack.pl/advisories/seclabs-adv-zone-alarm-04-08-2003.txt

x_refsource_MISC

2375

vdb-entry

x_refsource_OSVDB

9459

third-party-advisory

x_refsource_SECUNIA

20030805 Local ZoneAlarm Firewall (probably all versions - tested on v3.1)

mailing-list

x_refsource_VULNWATCH

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2003-1309

Description

Affected Products

References