CVE-2006-5721 - Cirriform Junctions

Description

The \Device\SandBox driver in Outpost Firewall PRO 4.0 (964.582.059) allows local users to cause a denial of service (system crash) via an invalid argument to the DeviceIoControl function that triggers an invalid memory operation.

Reference

http://www.matousec.com/info/advisories/Outpost-Insufficient-validation-of-SandBox-driver-input-buffer.php http://www.securityfocus.com/bid/20860 http://securitytracker.com/id?1017150 http://secunia.com/advisories/22673 http://securityreason.com/securityalert/1821 http://www.vupen.com/english/advisories/2006/4309 https://exchange.xforce.ibmcloud.com/vulnerabilities/29969 http://www.securityfocus.com/archive/1/450293/100/0/threaded