2.1

CVE-2005-0114

EPSS 0.07%
Veröffentlicht 11.02.2005 05:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

vsdatant.sys in Zone Lab ZoneAlarm before 5.5.062.011, ZoneAlarm Wireless before 5.5.080.000, Check Point Integrity Client 4.x before 4.5.122.000 and 5.x before 5.1.556.166 do not properly verify that the ServerPortName argument to the NtConnectPort function is a valid memory address, which allows local users to cause a denial of service (system crash) when ZoneAlarm attempts to dereference an invalid pointer.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Checkpoint ≫ Check Point Integrity Client Version <= 5.1.556.166

Checkpoint ≫ Check Point Integrity Client Version4.5.122.000

Zonelabs ≫ Zonealarm Version5.5.062.011

Zonelabs ≫ Zonealarm Wireless Security Version <= 5.5.080.000

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.17

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:N/I:N/A:P

http://download.zonelabs.com/bin/free/securityAlert/19.html

Patch

Vendor Advisory

http://secunia.com/advisories/14256

http://www.idefense.com/application/poi/display?id=199&type=vulnerabilities

Patch

Vendor Advisory

http://www.securityfocus.com/bid/12531

https://nvd.nist.gov/vuln/detail/CVE-2005-0114

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2005-0114

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2005-0114

EUVD