Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos network security services platform







Bugtraq: Re: ZA Security Hole

Re: ZA Security Hole

From: Pablo G. Sabbatella <pgs_at_kerozene.com.ar>
Date: Fri, 16 Apr 2004 01:39:49 -0300

Damjan, I have just tested it in Zone Alarm Pro 4.5.538.001 and it
worked exactly as you said it would, its vulnerable . hope they patch
it soon... greets 

-- 
Pablo G. Sabbatella  <pgs_at_kerozene.com.ar>
http://www.kerozene.com.ar/
------------- Reply separator ----------------
Wednesday, April 14, 2004, 5:44:50 PM, usted escribió:
DK> Hello!
DK> I think, I discover some kind of security hole in ZoneAlaram - any version.
DK> The problem is hidding in E-mail Protection. Because I'm form Slovenia (not
DK> Slovakia), our alphabet does have some letters with roof (c - è, s - ¹, z -
DK> ¾). And when the name of e-mail attachment contain any of these three
DK> letters, it don't go to the qurarantine (if the attachment do have right
DK> extension of course). I think that can be security threat. From this reason
DK> I write to you. If this is mistake, I'm sorry to steal your time with this
DK> e-mail. And sorry for my bad english :)
DK> I write to ZA Labs too, but no answer.
DK> Greets, Damjan
Received on Apr 16 2004
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]