RSS   Vulnerabilities for 'Privatefirewall'   RSS

2007-09-18
 
CVE-2007-4968

CWE-20
 

 
Privatefirewall 5.0.14.2 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via kernel SSDT hooks for (1) NtOpenProcess and (2) NtOpenThread.

 
2003-07-02
 
CVE-2003-0393

 

 
Privacyware Privatefirewall 3.0 does not block certain incoming packets when in "Filter Internet Traffic" or Deny Internet Traffic" modes, which allows remote attackers to identify running services via FIN scans or Xmas scans.

 


Copyright 2024, cxsecurity.com

 

Back to Top