Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Firewalls >> ZoneAlarm Personal Firewall port 67 flaw


Vulnerability Assessment Details

ZoneAlarm Personal Firewall port 67 flaw

Vulnerability Assessment Summary
Check ZoneAlarm version

Detailed Explanation for this Vulnerability Assessment

ZoneAlarm firewall runs on this host.

This version contains a flaw that may permit a remote attacker to bypass
the ruleset.
The issue is due to ZoneAlarm not monitoring and alerting UDP traffic with a
source port of 67.

This permits a possible hacker to bypass the firewall to reach protected hosts without
setting off warnings on the firewall.

Solution : Upgrade at least to version 2.1.25
Network Security Threat Level: High

Networks Security ID: 1137

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 David Maciejak

Cables, Connectors

Highpoint Rocketraid 2680 8 Channel Sas Raid Controller
$60.67
Highpoint Rocketraid 2680 8 Channel Sas Raid Controller picture50cm Slim Line SAS 4.0 SFF-8654 4i 38Pin Host to SFF-8654 38P Target Raid Cable
$28.9
50cm Slim Line SAS 4.0 SFF-8654 4i 38Pin Host to SFF-8654 38P Target Raid Cable pictureLSI Logic Intel PCI-E SAS SATA Raid Controller Card SRCSATA28E 256MB
$269.99
LSI Logic Intel PCI-E SAS SATA Raid Controller Card SRCSATA28E 256MB pictureIntel RS25GB008 SAS/SATA 6G PCIe 8x RAID Controller Card w/ Standard Bracket
$149.0
Intel RS25GB008 SAS/SATA 6G PCIe 8x RAID Controller Card w/ Standard Bracket picture


Discussions

No Discussions have been posted on this vulnerability.