Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack-based buffer overflow in the SMTP service support in vsmon.exe in Zone Labs ZoneAlarm before 4.5.538.001, ZoneLabs Integrity client 4.0 before 4.0.146.046, and 4.5 before 4.5.085, allows remote attackers to execute arbitrary code via a long RCPT TO argument.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Zone Labs ZoneAlarm SMTP远程缓冲区溢出漏洞
Vulnerability Description
ZoneAlarm是一款流行的桌面防火墙系统。 ZoneAlarm在处理SMTP协议时缺少充分缓冲区边界检查,远程攻击者可以利用这个漏洞进行缓冲区溢出攻击,可能以SYSTEM进程权限在系统上执行任意指令。 当ZoneAlarem检查外出邮件消息时存在缓冲区溢出问题,vsmon.exe在处理RCPT TO命令参数时缺少正确的边界缓冲区检查,提供超长参数给RCPT TO命令,可出发基于堆栈的缓冲区溢出,精心构建提交数据可能以SYSTEM进程权限在系统上执行任意指令。 要利用这个漏洞,目标系统必须作为SMTP服
CVSS Information
N/A
Vulnerability Type
N/A