Vulnerabilities > Privacyware

DATE CVE VULNERABILITY TITLE RISK
2007-09-19 CVE-2007-4968 Improper Input Validation vulnerability in Privacyware Privatefirewall 5.0.14.2
Privatefirewall 5.0.14.2 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via kernel SSDT hooks for (1) NtOpenProcess and (2) NtOpenThread.
4.4
2003-07-02 CVE-2003-0393 Unspecified vulnerability in Privacyware Privatefirewall 3.0
Privacyware Privatefirewall 3.0 does not block certain incoming packets when in "Filter Internet Traffic" or Deny Internet Traffic" modes, which allows remote attackers to identify running services via FIN scans or Xmas scans.
network
low complexity
privacyware
5.0