CyberSec.Space Logo
Back to CVE Browser

CVE-2006-5721

MEDIUM
4.9
CVSS Severity Score
EPSS Score0.0800%
EPSS Percentile13.04th
PublishedNov 4, 2006
Last ModifiedApr 23, 2026

Vulnerability Description

The \Device\SandBox driver in Outpost Firewall PRO 4.0 (964.582.059) allows local users to cause a denial of service (system crash) via an invalid argument to the DeviceIoControl function that triggers an invalid memory operation.

Affected Platforms (CPE)

πŸ“¦
Agnitum

Outpost Firewall

= 4.0

References & Advisories

πŸ”— http://secunia.com/advisories/22673
πŸ”— http://securityreason.com/securityalert/1821
πŸ”— http://securitytracker.com/id?1017150
πŸ”— http://www.matousec.com/info/advisories/Outpost-Insufficient-validation-of-SandBox-driver-input-buffer.php
πŸ”— http://www.securityfocus.com/archive/1/450293/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/20860
πŸ”— http://www.vupen.com/english/advisories/2006/4309
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/29969

Related Vulnerabilities

CVE-2004-25547.2

Novell Client Firewall (NCF) 2.0, as based on the Agnitum Outpost Firewall, allows local users to execute arbitrary code with SYST...

CVE-2007-03337.2

Agnitum Outpost Firewall PRO 4.0 allows local users to bypass access restrictions and insert Trojan horse drivers into the product...

CVE-2006-36977.2

Agnitum Outpost Firewall Pro 3.51.759.6511 (462), as used in (1) Lavasoft Personal Firewall 1.0.543.5722 (433) and (2) Novell Bord...

CVE-2004-24725.0

Agnitum Outpost Pro Firewall 2.1 allows remote attackers to cause a denial of service (CPU consumption) via a flood of small, inva...