From SecurityFocus: 18 ways to escalate privileges in Zone Labs ZoneAlarm Security Suite build 6.1.744.000 Fax
I wonder if this just affects ZA, were other firewalls tested for this? Anybody know? Never mind it seems to affect True vector which would only affect ZA. That could be good, TV is the source of most problems with ZA's memory leaks, so perhaps ZL will HAVE to adress it now.
Official Statement by ZoneLabs Statement Regarding Reported Local Escalation of Privileges Vulnerability for ZoneAlarm Fax
All I can say is WOW, that company can't even make an official statement with out screwing it up. The severity level at the top says high, two or three lines later they classify it as low. lol. Severity: High (Top of Statement) Severity: (Two lines later) Low They classify it as not remotely exploitable, then they say in order for it to work, the machine has to have been hacked with a trojan and the code placed on the system or social engineering, which sounds a lot like it may be remotely exploitable. To me, that says something about the quality control over there. Now imagine what their code looks like.
Hello, If it's no remotely exploitable, it means you must download stuff to your PC and execute it. So, it's nothing special. Mrk
You are confusing the 2 classifications The low classifacation is for the likelyhood of anyone actually getting damaged by the exploit. The High classification is for importance and speed they will apply to patching the exploit.
Yes, perhaps I did misunderstand, but they should also provide a more clear officail announcement format, nowhere on the announcement does it explain that and both instances are titled Severity. I also feel that the True Vector engine is the source of a majority of the problems with ZL products and needs to be re-written instead of just patched. It already has several memory leaks and would seriously reduce their support calls with a leaner, more straight forward approach. Sorry for misunderstanding their format. I was just venting some pent up frustration from dealing with their products from version 2 days and finally giving up with the early version 6 fiasco of a firewall they released.
I agree with you 100%, it is very frustrating and i also think ZA 4.5 was the best. It just seems to me that firewalls are trying to be an all in one now and are not doing to well at it. PS: No need to say sorry..
Everything is becoming a all-in-one product. Firewalls, antiviruses, anti-tojans and antispyware. Companies need to do this in order to remain competitive otherwise they will loose out since these days, many computer users(especially those who aren't pros) find that its easier and cheaper to buy a all-in-one product.
