CVE-2006-3540

CVE-2006-3540 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

Check Point Zone Labs ZoneAlarm Internet Security Suite 6.5.722.000, 6.1.737.000, and possibly other versions do not properly validate RegSaveKey, RegRestoreKey, and RegDeleteKey function calls, which allows local users to cause a denial of service (system crash) via a certain combination of these function calls with an HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\VETFDDNT\Enum argument.

Learn more about our User Device Pen Test.