ZoneAlarm and ZoneAlarm Pro before 5.5.062, with ad-blocking enabled, allows remote web sites to cause a denial of service (application instability or system hang) via certain JavaScript.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Zonealarm | Zonelabs | 4.0 (including) | 4.0 (including) |
| Zonealarm | Zonelabs | 4.5 (including) | 4.5 (including) |
| Zonealarm | Zonelabs | 4.5.538.001 (including) | 4.5.538.001 (including) |
| Zonealarm | Zonelabs | 5.0.590.015 (including) | 5.0.590.015 (including) |
| Zonealarm | Zonelabs | 5.5 (including) | 5.5 (including) |
References
- http://download.zonelabs.com/bin/free/securityAlert/18.html
- http://marc.info/?l=bugtraq\u0026m=110088808402495\u0026w=2
- http://secunia.com/advisories/13244/
- http://www.securityfocus.com/bid/11706
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18159
- http://download.zonelabs.com/bin/free/securityAlert/18.html
- http://marc.info/?l=bugtraq\u0026m=110088808402495\u0026w=2
- http://secunia.com/advisories/13244/
- http://www.securityfocus.com/bid/11706
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18159