Severity: Low

Zone Labs IPC Instability

Overview: The ZoneAlarm® family of products and Check Point Integrity™ have been updated to address a low risk vulnerability in their Inter Process Communication (IPC) functions.

Date Published: February 11, 2005
Date Last Revised: February 11, 2005

Impact: A local user could cause the system to lock. This vulnerability requires local access to the system -- remote attackers cannot use this vulnerability to attack an affected system.

This issue presents no other risks to the computer user.

Affected Products:

• ZoneAlarm Internet Security Suite, ZoneAlarm Pro, and ZoneAlarm prior to versions listed below.

Unaffected Products:

• No other Zone Labs products are affected by this issue

Description: ZoneAlarm Internet Security Suite, ZoneAlarm Pro, and ZoneAlarm monitor specific IPC messages. Using specially crafted code, it is possible to cause the software or system to lock. This vulnerability requires local system access—remote attackers cannot use this vulnerability to attack an affected system.

This vulnerability is resolved in versions:

• ZoneAlarm Internet Security Suite, ZoneAlarm Pro, ZoneAlarm, ZoneAlarm Antivirus version 5.5.094.000
• ZoneAlarm Wireless version 5.5.094.000

Users configured to receive automatic product updates will receive this update automatically. Users configured to receive manual updates should use the Check For Update option – see the Recommended Actions section below.

Recommended Actions:
ZoneAlarm Family

ZoneAlarm Internet Security Suite, ZoneAlarm Pro and ZoneAlarm users with automatic updates have received the patch through a product update.

Users with automatic updates:
You receive the update automatically. No further action is required.

Users with manual updates:
To manually update your Zone Labs software:

1. Select Overview | Preferences.
2. In the Check For Update section, click Check For Update.
3. If neccesary, follow the instructions to update your software.

ZoneAlarm Internet Security Suite and ZoneAlarm Pro versions 5.5.xxx and newer are not impacted by this issue.

Related Resources:

• Zone Labs Security Response Center:
  http://www.zonelabs.com/security

Acknowledgments: This issue was originally reported by iDEFENSE.

Contact: Zone Labs customers who are concerned about information contained in this advisory or have additional technical questions may reach our Technical Support team at: http://www.zonelabs.com/support/. To report security issues with Zone Labs products contact security@zonelabs.com.

Disclaimer: The information in the advisory is believed to be accurate at the time of publishing based on currently available information. Use of the information constitutes acceptance for use in an AS IS condition. There are no warranties with regard to this information. Neither the author nor the publisher accepts any liability for any direct, indirect, or consequential loss or damage arising from use of, or reliance on, this information. Zone Labs and Zone Labs products, are registered trademarks of Zone Labs Incorporated. and/or affiliated companies in the United States and other countries. All other registered and unregistered trademarks represented in this document are the sole property of their respective companies/owners.

Copyright: ©2004 Zone Labs LLC All rights reserved. Zone Labs, TrueVector, ZoneAlarm, and Cooperative Enforcement are registered trademarks of Zone Labs LLC The Zone Labs logo, Check Point Integrity and IMsecure are trademarks of Zone Labs, Inc. Check Point Integrity protected under U.S. Patent No. 5,987,611. Reg. U.S. Pat. & TM Off. Cooperative Enforcement is a service mark of Zone Labs LLC All other trademarks are the property of their respective owners.

Any reproduction of this alert other than as an unmodified copy of this file requires authorization from Zone Labs. Permission to electronically redistribute this alert in its unmodified form is granted. All other rights, including the use of other media, are reserved by Zone Labs LLC.