Race Condition Vulnerability in ZoneAlarm Extreme Security by Check Point
CVE-2010-5184
Currently unrated
Summary
A race condition in ZoneAlarm Extreme Security 9.1.507.000 on Windows XP enables local users to bypass kernel-mode hook handlers. This flaw permits the execution of potentially harmful code that would typically be prevented by these handlers. The vulnerability is leveraged through specific user-space memory alterations during the execution of hook handlers, resulting in an argument-switch or KHOBE attack. It's important to note that this issue has been contested, as it pertains to a protective mechanism that is circumvented when a malicious program is already running.
References
Timeline
Vulnerability Reserved
Vulnerability published