Back to search
CVE-2005-0114
Published: Feb 11, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
vsdatant.sys in Zone Lab ZoneAlarm before 5.5.062.011, ZoneAlarm Wireless before 5.5.080.000, Check Point Integrity Client 4.x before 4.5.122.000 and 5.x before 5.1.556.166 do not properly verify that the ServerPortName argument to the NtConnectPort function is a valid memory address, which allows local users to cause a denial of service (system crash) when ZoneAlarm attempts to dereference an invalid pointer.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://download.zonelabs.com/bin/free/securityAlert/19.html
x_refsource_CONFIRM
14256
third-party-advisory
x_refsource_SECUNIA
12531
vdb-entry
x_refsource_BID
20050211 ZoneAlarm 5.1 Invalid Pointer Dereference Vulnerability
third-party-advisory
x_refsource_IDEFENSE
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now