Zone Labs Won't Fix Hole In Free Firewall

[kairon]

Zone Labs said it will not fix a vulnerability found in the freeware version of its ZoneAlarm firewall. The company said the vulnerability was a problem found in Windows, not its firewall, and that it would require the hacker equivalent of "brain surgery" to exploit.

Instead, Zone Labs executives said that the vulnerability could be protected against by using one of its paid products: ZoneAlarm Plus, ZoneAlarm Pro, or its Integrity enterprise system.

According to the posting to the BugTraq mailing list, the vulnerability involves the Windows shell32.dll file, which can invoke the ShellExecute function. When one of the parameters of ShellExecute is set to a Web address, the web browser is prompted to access the web site in question -- and, under most ZoneAlarm configurations, is allowed to freely access web sites without the express permission of the user.

According to the poster, "aceh", that browser could quickly access a malicious web site, funnel a short string of confidential information (such as a username and password) and quickly redirect itself to an innocuous and trusted web site.

Although not stated expressly, the vulnerability appears to first require a Trojan to be loaded onto the user's machine via an email virus or some other means. However, "aceh" concluded that the vulnerability is common to all of the freeware versions of ZoneAlarm. Executives at Zone Labs, however, said that the free version of ZoneAlarm provides adequate protection.

Read more @ ExtremeTech

[bangbang023 Veteran]

kinda sucks for those freeware users.

[enigma-penguin Veteran]

if its a problem with windows its not their problem.... and even if it was its the freeware version(they are a company you know, they want /need to make money) and it'll just be a nudge to say ..come on buy a copy

besides ms isnt gonna fix it either... they wont even fix that 100% cpu usage bug

[empty]

Pah, good firewall, crappy company.

[RazorSA]

get the full version, pay the $$$

[kagaku]

Or get yourself a real router/firewall. www.smoothwall.org / www.clarkconnect.org / www.freebsd.org

All good choices. :p

[MxxCon]

they WILL FIX free version after all so this article isn't really relavant now

but still nice to know that ZoneLabs is thinking of money before security

[EnisDonKing_]

kinda lame try to *scare* some users which will switch on pro version imm.

[bangbang023 Veteran]

but still nice to know that ZoneLabs is thinking of money before security

yeah no kidding, imagine if MS did something like this? People wouldn't stop b*tching.

[SiXXGuNNZ]

couldnt ya just manually add shell32.dll to the programs list and block everything from it?

[aem4162]

they WILL FIX free version after all so this article isn't really relavant now

but still nice to know that ZoneLabs is thinking of money before security

this was on screensavers last night or the night before...ss was going to report that za wasn't going to fix the hole and then za heard about it and said they'd fix it...something like that

[MxxCon]

they WILL FIX free version after all so this article isn't really relavant now

but still nice to know that ZoneLabs is thinking of money before security

this was on screensavers last night or the night before...ss was going to report that za wasn't going to fix the hole and then za heard about it and said they'd fix it...something like that

http://www.dslreports.com/shownews/30039

:whistle:

[bangbang023 Veteran]

it's amazing what fear of bad publicity will do to a company.

[Mr. Black]

This decision was reversed the other day.

[Sierra]

ZA rules ! ;)

[housegroover]

Or get yourself a real router/firewall. www.smoothwall.org / www.clarkconnect.org / www.freebsd.org

All good choices. :p

What sort of firewall would do for a PC? home use. PM if you can.