ZoneAlarm SMTP Service Buffer Overflow Vulnerability
SECUNIA ADVISORY ID:
SA10921
VERIFY ADVISORY:
http://secunia.com/advisories/10921/
CRITICAL:
Highly critical
IMPACT:
System access
WHERE:
From remote
SOFTWARE:
ZoneAlarm Pro 4.x
ZoneAlarm Plus 4.x
ZoneAlarm 4.x
Zone Labs Integrity 4.x
DESCRIPTION:
eEye has discovered a vulnerability in ZoneAlarm and Zone Labs Integrity, allowing malicious people to compromise a vulnerable system.
The vulnerability is caused due to a boundary error in the SMTP processing system, which is used when ZoneAlarm and Integrity is configured to accept inbound SMTP traffic.
Successful exploitation allows execution of arbitrary code with SYSTEM privileges.
The vulnerability has been reported to affect version 4.x. Prior versions are not vulnerable.
SOLUTION:
Update to the following versions:
- ZoneAlarm (Free, Plus, Pro) version 4.5.538.001
- Integrity version 4.0.146.046
- Integrity version 4.5.085
PROVIDED AND/OR DISCOVERED BY:
eEye Digital Security
ORIGINAL ADVISORY:
http://download.zonelabs.com/bin/free/securityAlert/8.html
For further details and links please click here to see the actual Secunia Advisory: http://secunia.com/advisories/10921/