CVE-2007-2467 Information

Description

ZoneAlarm Pro 6.5.737.000 6.1.744.001 and possibly earlier versions and other products allows local users to cause a denial of service (system crash) by sending malformed data to the vsdatant device driver which causes an invalid memory access.

Reference

http://osvdb.org/35240 http://secunia.com/advisories/25064 http://www.matousec.com/info/advisories/ZoneAlarm-Insufficient-validation-of-vsdatant-driver-input-buffer.php http://www.securityfocus.com/archive/1/467269/100/0/threaded http://www.securityfocus.com/bid/23734 http://www.vupen.com/english/advisories/2007/1608 https://exchange.xforce.ibmcloud.com/vulnerabilities/34028