Outpost Firewall Pro secrately fixing security flaws?

To: full-disclosure@xxxxxxxxxxxxxxxxx, bugtraq@xxxxxxxxxxxxxxxxx
Subject: Outpost Firewall Pro secrately fixing security flaws?
From: "Bipin Gautam" <gautam.bipin@xxxxxxxxx>
Date: Tue, 18 Jul 2006 02:26:54 +0545
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=nejd+d/KHsmnbx/3CmOZJpzPeBms+PkirTVAMqcb+yFYEPFpxUygcxqv/md892N6PTjmbQP6tMD1jk3agpxQEJ2ESmKpN5uqN1NoznNdodr+LB3T8grC8nfz7MIou6f3uOTawaK6wHZBqkfqY/bMcrgsvdPiyKOF01r30nCfd7A=
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

hello,
To my knowledge Outpost Firewall Pro 3.5.631 had a security issue
(say: 0-day) that An exception can be passed & then triggered  by a
local system user to the firewall resulting in a SYSTEM CRASH due to a
overflow flaw in filtnt.sys (firewall driver) I was testing it on
winxpsp2 (patchlevel latest) & other possibilities of remote
exploitation.

try experimenting with:

cmd.exe
c:\> mshta.exe longggggggggg string


After upgrading to Outpost Firewall Pro ver. 3.51.759.6511 (462) the
issue seems fixed.

so secret fix huh ?

---

Bipin Gautam
http://bipin.tk

Zeroth law of security: The possibility of poking a system from lower
privilege is zero unless & until there is possibility of direct,
indirect or consequential communication between the two...

Prev by Date: Keyif Portal v2.0 - Microsoft Access Driver ( MDB ) Download
Next by Date: [ MDKSA-2006:124 ] - Updated kernel packages fix privilege escalation vulnerability
Previous by thread: Keyif Portal v2.0 - Microsoft Access Driver ( MDB ) Download
Next by thread: [ MDKSA-2006:124 ] - Updated kernel packages fix privilege escalation vulnerability
Index(es):
- Date
- Thread