Vulnerabilities > Zonelabs
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-12-31 | CVE-2004-1517 | Unspecified vulnerability in Zonelabs Imsecure 1.0.0.0/1.0.1.0/1.0.2.0 Zone Labs IMsecure and IMsecure Pro before 1.5 allow remote attackers to bypass Active Link Filtering via an instant message containing a URL with hex encoded file extensions. | 7.5 |
| 2004-12-06 | CVE-2004-0612 | Security Bypass vulnerability in Zonelabs Zonealarm 5.0.590.015 The Mobile Code filter in ZoneAlarm Pro 5.0.590.015 does not filter mobile code within an SSL encrypted session, which could allow remote attackers to bypass the mobile code filtering. | 5.1 |
| 2004-11-23 | CVE-2004-0309 | Remote Buffer Overflow vulnerability in Zone Labs ZoneAlarm SMTP Stack-based buffer overflow in the SMTP service support in vsmon.exe in Zone Labs ZoneAlarm before 4.5.538.001, ZoneLabs Integrity client 4.0 before 4.0.146.046, and 4.5 before 4.5.085, allows remote attackers to execute arbitrary code via a long RCPT TO argument. | 10.0 |
| 2004-04-14 | CVE-2004-1936 | Unspecified vulnerability in Zonelabs Zonealarm ZoneAlarm Pro 4.5.538.001 and possibly other versions allows remote attackers to bypass e-mail protection via attachments whose names contain certain non-English characters. | 7.5 |
| 2003-12-31 | CVE-2003-1309 | Local Device Driver IO Control Code Execution vulnerability in Zonelabs Zonealarm 3.7.202/3.7.211 The DeviceIoControl function in the TrueVector Device Driver (VSDATANT) in ZoneAlarm before 3.7.211, Pro before 4.0.146.029, and Plus before 4.0.146.029 allows local users to gain privileges via certain signals (aka "Device Driver Attack"). | 10.0 |
| 2002-12-31 | CVE-2002-1997 | Unspecified vulnerability in Zonelabs Zonealarm 3.0 ZoneAlarm Pro 3.0 MailSafe allows remote attackers to bypass filtering and possibly execute arbitrary code via email attachments containing a trailing dot after the file extension. | 7.5 |
| 2002-12-31 | CVE-2002-1911 | Denial Of Service vulnerability in Zone Labs ZoneAlarm Syn Flood ZoneAlarm Pro 3.0 and 3.1, when configured to block all traffic, allows remote attackers to cause a denial of service (CPU and memory consumption) via a large number of SYN packets (SYN flood). | 5.0 |
| 2001-12-31 | CVE-2001-1548 | Unspecified vulnerability in Zonelabs Zonealarm ZoneAlarm 2.1 through 2.6 and ZoneAlarm Pro 2.4 and 2.6 allows local users to bypass filtering via non-standard TCP packets created with non-Windows protocol adapters. | 2.1 |
| 2001-08-29 | CVE-2001-0682 | Improper Locking vulnerability in multiple products ZoneAlarm and ZoneAlarm Pro allows a local attacker to cause a denial of service by running a trojan to initialize a ZoneAlarm mutex object which prevents ZoneAlarm from starting. | 5.5 |
| 2001-07-18 | CVE-2001-1373 | Unspecified vulnerability in Zonelabs Zonealarm MailSafe in Zone Labs ZoneAlarm 2.6 and earlier and ZoneAlarm Pro 2.6 and 2.4 does not block prohibited file types with long file names, which allows remote attackers to send potentially dangerous attachments. | 5.0 |