ZoneAlarm Personal Firewall Port 67 Flaw Network Vulnerability

Summary

ZoneAlarm firewall runs on this host. This version contains a flaw that may allow a remote attacker to bypass the ruleset. The issue is due to ZoneAlarm not monitoring and alerting UDP traffic with a source port of 67. This allows an attacker to bypass the firewall to reach protected hosts without setting off warnings on the firewall.

Solution

Upgrade at least to version 2.1.25

Severity

Classification

CVE CVE-2000-0339
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

ZoneAlarm Personal Firewall port 67 flaw
Kerio personal Firewall buffer overflow
Firewall ECE-bit bypass

Take action and discover your vulnerabilities