sharedholder
02-23-2004, 07:40 PM
The extremely popular firewall, ZoneAlarm, has been dealt a nasty blow with a "highly critical" security hole that allows system access to remote users - i.e. the worst possible situation. The hole affects the most recent version of ZoneAlarm - version 4 - and users with the software's update facility turned on were this morning warned to upgrade and asked to download a run a 4.8MB patching file. The vulnerability itself is an unchecked buffer in the fundamental e-mail protocol SMTP. ZoneAlarm's creators Zone Labs warned that sufficiently exploited, "a skilled attacker could cause the firewall to stop processing traffic, execute arbitrary code, or elevate malicious code’s privileges".
However, the company only gives the hole a "Medium" warning explaining that for the hole to be exploited, the system would have to be acting as an SMTP server and that ZoneLabs "does not recommend using our client security products to protect servers". The hole itself was discovered by eEye Digital Security - the company which discovered the huge ASN hole in Windows. Zone Labs recommends that all ZoneAlarm users upgrade their software and has posted a webpage covering the hole with download links to its upgrades.
Source:
http://www.securitynewsportal.com/index.shtml
ZoneLabs Thiefs:
Unfortunately ZoneLabs is taking this 'golden opportunity' to extort subscription fees out of the end users. Yes... you need to have a "current annual update and support subscription" when you visit ZoneAlarm's download page for this updated version. When folks who bought the program but not the 'support subscription' go to download their security update they will instead be met with this : "If you wish to remain eligible for this product release you will need to purchase an Annual Update and Support Renewal. Your update to ZoneAlarm Pro will be presented to download after your Update and Support Subscription purchase To which we say... Thanks ZoneLabs... for nothing...
My advice , get Sygate (http://www.klitetools.com/Security.html) cause is the best
However, the company only gives the hole a "Medium" warning explaining that for the hole to be exploited, the system would have to be acting as an SMTP server and that ZoneLabs "does not recommend using our client security products to protect servers". The hole itself was discovered by eEye Digital Security - the company which discovered the huge ASN hole in Windows. Zone Labs recommends that all ZoneAlarm users upgrade their software and has posted a webpage covering the hole with download links to its upgrades.
Source:
http://www.securitynewsportal.com/index.shtml
ZoneLabs Thiefs:
Unfortunately ZoneLabs is taking this 'golden opportunity' to extort subscription fees out of the end users. Yes... you need to have a "current annual update and support subscription" when you visit ZoneAlarm's download page for this updated version. When folks who bought the program but not the 'support subscription' go to download their security update they will instead be met with this : "If you wish to remain eligible for this product release you will need to purchase an Annual Update and Support Renewal. Your update to ZoneAlarm Pro will be presented to download after your Update and Support Subscription purchase To which we say... Thanks ZoneLabs... for nothing...
My advice , get Sygate (http://www.klitetools.com/Security.html) cause is the best