1. Home
  2. CVE Database
  3. CVE-2005-3560
HIGH · 7.5

CVE-2005-3560

Zone Labs (1) ZoneAlarm Pro 6.0, (2) ZoneAlarm Internet Security Suite 6.0, (3) ZoneAlarm Anti-Virus 6.0, (4) ZoneAlarm Anti-Spyware 6.0 through 6.1, and (5) ZoneAlarm 6.0 allow remote attackers to by...

Vulnerability Description

Zone Labs (1) ZoneAlarm Pro 6.0, (2) ZoneAlarm Internet Security Suite 6.0, (3) ZoneAlarm Anti-Virus 6.0, (4) ZoneAlarm Anti-Spyware 6.0 through 6.1, and (5) ZoneAlarm 6.0 allow remote attackers to bypass the "Advanced Program Control and OS Firewall filters" setting via URLs in "HTML Modal Dialogs" (window.location.href) contained within JavaScript tags.

CVSS Score

7.5

HIGH

AV:N/AC:L/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
ZonelabsZonealarm6.0
ZonelabsZonealarm Anti-Spyware6.0
ZonelabsZonealarm Antivirus6.0
ZonelabsZonealarm Security Suite6.0

References

FAQ

What is CVE-2005-3560?

CVE-2005-3560 is a vulnerability with a CVSS score of 7.5 (HIGH). Zone Labs (1) ZoneAlarm Pro 6.0, (2) ZoneAlarm Internet Security Suite 6.0, (3) ZoneAlarm Anti-Virus 6.0, (4) ZoneAlarm Anti-Spyware 6.0 through 6.1, and (5) ZoneAlarm 6.0 allow remote attackers to by...

How severe is CVE-2005-3560?

CVE-2005-3560 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2005-3560?

Check the references section above for vendor advisories and patch information. Affected products include: Zonelabs Zonealarm, Zonelabs Zonealarm Anti-Spyware, Zonelabs Zonealarm Antivirus, Zonelabs Zonealarm Security Suite.