lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Sat Oct 1 05:00:03 2005 From: mail at hackingspirits.com (Debasis Mohanty) Subject: Re: Bypassing Personal Firewall (Zone Alarm Pro)Using DDE-IPC Paul Laudanski >> If you're still using version 3 its time to upgrade. There is a version 6 out now. >> And in their press release, only the free is affected. Funny !! Thanks for suggestion :P -----Original Message----- From: Paul Laudanski [mailto:zx@...tlecops.com] Sent: Saturday, October 01, 2005 3:25 AM To: Debasis Mohanty Cc: warl0ck@...uxmail.org; full-disclosure@...ts.grok.org.uk; bugtraq@...urityfocus.com Subject: RE: [Full-disclosure] Re: Bypassing Personal Firewall (Zone Alarm Pro)Using DDE-IPC On Sat, 1 Oct 2005, Debasis Mohanty wrote: > Paul Laudanski wrote: > >> This "exploit" was tested by members at CastleCops and found to be > untrue: > > Unfortunately not !! Besides Zone Alarm free version it has been > tested for ZA Pro 3x and it works like a charm. Again Symantec > SecurityFocus has probably tested this for ZA Pro 5.1. so they have > mentioned the vulnerable version here > http://securityfocus.com/bid/14966 If you're still using version 3 its time to upgrade. There is a version 6 out now. And in their press release, only the free is affected. -- Paul Laudanski, Microsoft MVP Windows-Security CastleCops(SM), http://castlecops.com
Powered by blists - more mailing lists