vsdatant.sys in Check Point Zone Labs ZoneAlarm Pro before 7.0.302.000 does not validate certain arguments before being passed to hooked SSDT function handlers, which allows local users to cause a denial of service (system crash) or possibly execute arbitrary code via crafted arguments to the (1) NtCreateKey and (2) NtDeleteFile functions.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-04-18T02:20:00

Updated: 2024-08-07T13:23:50.550Z

Reserved: 2007-04-17T00:00:00

Link: CVE-2007-2083

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-04-18T03:19:00.000

Modified: 2024-11-21T00:29:51.793

Link: CVE-2007-2083

cve-icon Redhat

No data.