The host has ZoneAlarm Internet Security Suite installed, which is prone to buffer overflow vulnerability.

Exploitation could allow attackers to execute arbitrary code on the affected system or cause denial of service. Impact Level : Application

Upgrade to ZoneAlarm Internet Security Suite 9 or later. For updates refer to http://www.zonealarm.com/store/content/dotzone/freeDownloads.jsp

The vulnerability is due to inadequate boundary checks on user-supplied input in multiscan.exe file when performing virus scans on long paths or file names. This can be exploited by tricking into scanning malicious directory or file names.

ZoneAlarm Internet Security Suite 8.x and prior on Windows (All).

• http://secunia.com/advisories/31832/
• http://www.frsirt.com/english/advisories/2008/2556
• http://www.securityfocus.com/archive/1/496226

---

Updated on 2015-03-25