vsdatant.sys in Check Point Zone Labs ZoneAlarm Pro before 7.0.302.000 does not validate certain arguments before being passed to hooked SSDT function handlers, which allows local users to cause a denial of service (system crash) or possibly execute arbitrary code via crafted arguments to the (1) NtCreateKey and (2) NtDeleteFile functions.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-04-18T02:20:00
Updated: 2024-08-07T13:23:50.550Z
Reserved: 2007-04-17T00:00:00
Link: CVE-2007-2083
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-04-18T03:19:00.000
Modified: 2024-11-21T00:29:51.793
Link: CVE-2007-2083
Redhat
No data.