Sign-up

ID

VAR-200709-0081


CVE

CVE-2007-5042


TITLE

Outpost Firewall Pro Service disruption in (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2007-002674

DESCRIPTION

Outpost Firewall Pro 4.0.1025.7828 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via the (1) NtCreateKey, (2) NtDeleteFile, (3) NtLoadDriver, (4) NtOpenProcess, (5) NtOpenSection, (6) NtOpenThread, and (7) NtUnloadDriver kernel SSDT hooks, a partial regression of CVE-2006-7160. This vulnerability CVE-2006-7160 Vulnerability caused by some regressions.By local users SSDT Service operation disruption through the following ( crash ) There is a possibility that it becomes a state and authority is acquired. (1) NtCreateKey kernel (2) NtDeleteFile kernel (3) NtLoadDriver kernel (4) NtOpenProcess kernel (5) NtOpenSection kernel (6) NtOpenThread kernel (7) NtUnloadDriver kernel. Outpost Firewall is prone to a denial-of-service vulnerability

Trust: 1.98

sources: NVD: CVE-2007-5042 // JVNDB: JVNDB-2007-002674 // BID: 81577 // VULHUB: VHN-28404

AFFECTED PRODUCTS

vendor:agnitummodel:outpost firewallscope:eqversion:4.0.1025.7828

Trust: 1.9

vendor:agnitummodel:outpost firewallscope:eqversion:pro 4.0.1025.7828

Trust: 0.8

sources: BID: 81577 // JVNDB: JVNDB-2007-002674 // CNNVD: CNNVD-200709-339 // NVD: CVE-2007-5042

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2007-5042
value: MEDIUM

Trust: 1.0

NVD: CVE-2007-5042
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-200709-339
value: MEDIUM

Trust: 0.6

VULHUB: VHN-28404
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2007-5042
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-28404
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-28404 // JVNDB: JVNDB-2007-002674 // CNNVD: CNNVD-200709-339 // NVD: CVE-2007-5042

PROBLEMTYPE DATA

problemtype:CWE-264

Trust: 1.9

sources: VULHUB: VHN-28404 // JVNDB: JVNDB-2007-002674 // NVD: CVE-2007-5042

THREAT TYPE

local

Trust: 0.9

sources: BID: 81577 // CNNVD: CNNVD-200709-339

TYPE

permissions and access control

Trust: 0.6

sources: CNNVD: CNNVD-200709-339

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2007-002674

PATCH
title:Top Pageurl:http://www.agnitum.com/products/outpost/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2007-002674

EXTERNAL IDS
db:NVDid:CVE-2007-5042
Trust: 2.8
db:SREASONid:3161
Trust: 2.0
db:OSVDBid:45899
Trust: 1.7
db:JVNDBid:JVNDB-2007-002674
Trust: 0.8
db:BUGTRAQid:20070918 PLAGUE IN (SECURITY) SOFTWARE DRIVERS & BSDOHOOK UTILITY
Trust: 0.6
db:CNNVDid:CNNVD-200709-339
Trust: 0.6
db:BIDid:81577
Trust: 0.4
db:VULHUBid:VHN-28404
Trust: 0.1
sources:
            
            
            VULHUB: VHN-28404 // 
            
            
            
            BID: 81577 // 
            
            
            
            JVNDB: JVNDB-2007-002674 // 
            
            
            
            CNNVD: CNNVD-200709-339 // 
            
            
            
            NVD: CVE-2007-5042

REFERENCES
url:http://www.matousec.com/info/advisories/plague-in-security-software-drivers.php
Trust: 2.0
url:http://www.matousec.com/projects/windows-personal-firewall-analysis/plague-in-security-software-drivers.php
Trust: 2.0
url:http://securityreason.com/securityalert/3161
Trust: 2.0
url:http://osvdb.org/45899
Trust: 1.7
url:http://www.securityfocus.com/archive/1/479830/100/0/threaded
Trust: 1.1
url:http://www.securityfocus.com/archive/1/archive/1/479830/100/0/threaded
Trust: 0.9
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-5042
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-5042
Trust: 0.8
sources:
            
            
            VULHUB: VHN-28404 // 
            
            
            
            BID: 81577 // 
            
            
            
            JVNDB: JVNDB-2007-002674 // 
            
            
            
            CNNVD: CNNVD-200709-339 // 
            
            
            
            NVD: CVE-2007-5042

CREDITS
Unknown
Trust: 0.3
sources:
            
            
            BID: 81577

SOURCES
db:VULHUBid:VHN-28404
db:BIDid:81577
db:JVNDBid:JVNDB-2007-002674
db:CNNVDid:CNNVD-200709-339
db:NVDid:CVE-2007-5042

LAST UPDATE DATE
2025-04-10T23:01:05.542000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-28404date:2018-10-15T00:00:00
db:BIDid:81577date:2007-09-23T00:00:00
db:JVNDBid:JVNDB-2007-002674date:2012-06-26T00:00:00
db:CNNVDid:CNNVD-200709-339date:2007-09-25T00:00:00
db:NVDid:CVE-2007-5042date:2025-04-09T00:30:58.490

SOURCES RELEASE DATE
db:VULHUBid:VHN-28404date:2007-09-24T00:00:00
db:BIDid:81577date:2007-09-23T00:00:00
db:JVNDBid:JVNDB-2007-002674date:2012-06-26T00:00:00
db:CNNVDid:CNNVD-200709-339date:2007-09-23T00:00:00
db:NVDid:CVE-2007-5042date:2007-09-24T00:17:00