[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-disclosure] Different Claims by ZoneLabs on the "Bypassing PersonalFirewall (Zone Alarm Pro) Using DDE-IPC" issue

To: Debasis Mohanty <mail@xxxxxxxxxxxxxxxxxx>
Subject: RE: [Full-disclosure] Different Claims by ZoneLabs on the "Bypassing PersonalFirewall (Zone Alarm Pro) Using DDE-IPC" issue
From: Paul Laudanski <zx@xxxxxxxxxxxxxx>
Date: Mon, 3 Oct 2005 11:36:18 -0400 (EDT)

On Mon, 3 Oct 2005, Debasis Mohanty wrote:

> Paul, 
> 
> >> This does not include the version 3.7.159 you are testing.  
> 
> Didn't get the meaning by what you mean by "This does not include". Do u
> mean whether or not version 3.7.159 is vulnerable it shouldn't be
> conscidered??

What I'm saying is that the vendor never claimed ZAP versions prior to 5 
are not vulnerable in the report.  So you're comment is redundant.  Simply 
upgrade your version.  Ciao.

-- 
Paul Laudanski, Microsoft MVP Windows-Security
CastleCops(SM), http://castlecops.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- RE: [Full-disclosure] Different Claims by ZoneLabs on the "Bypassing PersonalFirewall (Zone Alarm Pro) Using DDE-IPC" issue
  - From: Debasis Mohanty

Prev by Date: Re: [Full-disclosure] Careless Law Enforcement Computer ForensicsLacking InfoSec Expertise Causes Suicides
Next by Date: [Full-disclosure] [ GLSA 200510-01 ] gtkdiskfree: Insecure temporary file creation
Previous by thread: RE: [Full-disclosure] Different Claims by ZoneLabs on the "Bypassing PersonalFirewall (Zone Alarm Pro) Using DDE-IPC" issue
Next by thread: RE: [Full-disclosure] Different Claims by ZoneLabs on the "Bypassing PersonalFirewall (Zone Alarm Pro) Using DDE-IPC" issue
Index(es):
- Date
- Thread