Bypassing Advanced Program Control and OS Firewall filters in ZoneAlarm 6.0

Bypassing Advanced Program Control and OS Firewall filters in ZoneAlarm 6.0

CVE-2005-3560 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Zone Labs (1) ZoneAlarm Pro 6.0, (2) ZoneAlarm Internet Security Suite 6.0, (3) ZoneAlarm Anti-Virus 6.0, (4) ZoneAlarm Anti-Spyware 6.0 through 6.1, and (5) ZoneAlarm 6.0 allow remote attackers to bypass the "Advanced Program Control and OS Firewall filters" setting via URLs in "HTML Modal Dialogs" (window.location.href) contained within JavaScript tags.

Learn more about our Web Application Penetration Testing UK.