Bugtraq: Re: Bypassing Personal Firewall (Zone Alarm Pro) Using DDE-IPC

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Bypassing Personal Firewall (Zone Alarm Pro) Using DDE-IPC

From: Paul Laudanski <zx () castlecops com>
Date: Thu, 29 Sep 2005 17:41:13 -0400 (EDT)

On 29 Sep 2005 warl0ck () linuxmail org wrote:

It is issue with almost all the firewalls
firewalls don't protect the running applications
themselves.I think i don't get is what does it
have to do with DDE ?.Also one can read firewall
ACL from the settings and inject code into the
running trusted process.


This "exploit" was tested by members at CastleCops and found to be untrue:

http://castlecops.com/postlite134369-.html

Snapshots also provided.

-- 
Paul Laudanski, Microsoft MVP Windows-Security
CastleCops(SM), http://castlecops.com

By Date By Thread

Current thread:

Bypassing Personal Firewall (Zone Alarm Pro) Using DDE-IPC Debasis Mohanty (Sep 28)
- <Possible follow-ups>
- Re: Bypassing Personal Firewall (Zone Alarm Pro) Using DDE-IPC warl0ck (Sep 29)
  - Re: Bypassing Personal Firewall (Zone Alarm Pro) Using DDE-IPC Paul Laudanski (Sep 30)