ZoneAlarm Personal Firewall Port 67 Flaw Network Vulnerability

Summary

ZoneAlarm firewall runs on this host. This version contains a flaw that may allow a remote attacker to bypass the ruleset. The issue is due to ZoneAlarm not monitoring and alerting UDP traffic with a source port of 67. This allows an attacker to bypass the firewall to reach protected hosts without setting off warnings on the firewall.

Solution

Upgrade at least to version 2.1.25

Severity

Classification

CVE CVE-2000-0339

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Firewall ECE-bit bypass
ZoneAlarm Personal Firewall port 67 flaw
Kerio personal Firewall buffer overflow

Take action and discover your vulnerabilities