Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2006-1221
Deferred
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-14 Mar, 2006 | 11:02
Updated At-03 Apr, 2025 | 01:03

Untrusted search path vulnerability in the TrueVector service (VSMON.exe) in Zone Labs ZoneAlarm 6.x and Integrity does not search ZoneAlarm's own folders before other folders that are specified in a user's PATH, which might allow local users to execute code as SYSTEM by placing malicious DLLs into a folder that has insecure permissions, but is searched before ZoneAlarm's folder. NOTE: since this issue is dependent on the existence of a vulnerability in a separate product (weak permissions of executables or libraries, or the execution of malicious code), perhaps it should not be included in CVE.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.06.2MEDIUM
AV:L/AC:H/Au:N/C:C/I:C/A:C
CPE Matches
zonelabs
zonelabs
>>zonealarm_security_suite>>6.1.744.000
cpe:2.3:a:zonelabs:zonealarm_security_suite:6.1.744.000:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
NVD-CWE-OtherPrimarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://reedarvin.thearvins.com/20060308-01.htmlcve@mitre.org
Exploit
http://securitytracker.com/id?1015743cve@mitre.org
Exploit
http://www.securityfocus.com/archive/1/427122/100/0/threadedcve@mitre.org
N/A
http://www.securityfocus.com/archive/1/427145/100/0/threadedcve@mitre.org
N/A
http://www.securityfocus.com/archive/1/427309/100/0/threadedcve@mitre.org
N/A
http://www.securityfocus.com/bid/17037cve@mitre.org
N/A
http://www.vupen.com/english/advisories/2006/0947cve@mitre.org
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/25097cve@mitre.org
N/A
http://reedarvin.thearvins.com/20060308-01.htmlaf854a3a-2127-422b-91ae-364da2661108
Exploit
http://securitytracker.com/id?1015743af854a3a-2127-422b-91ae-364da2661108
Exploit
http://www.securityfocus.com/archive/1/427122/100/0/threadedaf854a3a-2127-422b-91ae-364da2661108
N/A
http://www.securityfocus.com/archive/1/427145/100/0/threadedaf854a3a-2127-422b-91ae-364da2661108
N/A
http://www.securityfocus.com/archive/1/427309/100/0/threadedaf854a3a-2127-422b-91ae-364da2661108
N/A
http://www.securityfocus.com/bid/17037af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.vupen.com/english/advisories/2006/0947af854a3a-2127-422b-91ae-364da2661108
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/25097af854a3a-2127-422b-91ae-364da2661108
N/A
Change History
0Changes found
Details not found