AOH :: HP Unsorted Z :: BT-21051.HTM

Zemana Antilogger 1.9.2 DoS attack



Zemana Antilogger 1.9.2 DoS attack
Zemana Antilogger 1.9.2 DoS attack



Severity: Critical=0D
Title: Zemana Antilogger: Denial of Service=0D
Date: May 30, 2009=0D
Vers:1.9.2.102=0D
ID: 200905-30=0D
StreAmeR - 2009=0D
=0D
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -=0D
=0D
Synopsis=0D
=========0D
=0D
A vulnerability has been discovered in Zemana Antilogger, allowing for a Denial=0D
of Service.=0D
=0D
Background=0D
===========0D
=0D
Zemana AntiLogger has a new, powerful way to protect your PC from malware attacks.=0D
=0D
Affected packages=0D
==================0D
Vers:1.9.2.102 and old versions.=0D
=0D
Description=0D
============0D
Attempts to terminate the process by sending Close messages (called WM_CLOSE and SC_CLOSE) to all windows in the target process. This method only works if 1) the target process has at least one window, and 2) the target process doesn't handle the WM_CLOSE/SC_CLOSE message .=0D
=0D
=0D
Impact=0D
=======0D
=0D
Attacker could send specially crafted messages to the windows of the target process,=0D
resulting in a crash.=0D
=0D
Workaround=0D
===========0D
=0D
There is no known workaround at this time.=0D
=0D
Resolution=0D
===========0D
=0D
No current solution.=0D

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.