CVE-2007-2174

2007-04-2416:00:00

mitre

www.cve.org

AI Score

7.2

Confidence

High

EPSS

0.001

Percentile

26.4%

JSON

The IOCTL handling in srescan.sys in the ZoneAlarm Spyware Removal Engine (SRE) in Check Point ZoneAlarm before 5.0.156.0 allows local users to execute arbitrary code via certain IOCTL lrp parameter addresses.

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=517

secunia.com/advisories/24986

www.securityfocus.com/archive/1/466656/100/0/threaded

www.securityfocus.com/bid/23579

www.securitytracker.com/id?1017948

www.securitytracker.com/id?1017953

www.vupen.com/english/advisories/2007/1491

exchange.xforce.ibmcloud.com/vulnerabilities/33786