CVE-2007-2083

CVE-2007-2083 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

vsdatant.sys in Check Point Zone Labs ZoneAlarm Pro before 7.0.302.000 does not validate certain arguments before being passed to hooked SSDT function handlers, which allows local users to cause a denial of service (system crash) or possibly execute arbitrary code via crafted arguments to the (1) NtCreateKey and (2) NtDeleteFile functions.

Learn more about our User Device Pen Test.