CVE-2000-0339

ZoneAlarm <2.1.10 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2000-0339. PoCs published by Wally Whacker.

AI-analyzed exploit summary This exploit leverages a vulnerability in Zone Labs personal Firewall where port scans originating from source port 67 (UDP) bypass detection. The provided command uses nmap to perform a UDP port scan on ports 130-140 without triggering alerts.

Description

ZoneAlarm 2.1.10 and earlier does not filter UDP packets with a source port of 67, which allows remote attackers to bypass the firewall rules.

Exploits (1)

exploitdb SCANNER VERIFIED
by Wally Whacker · textremotewindows
https://www.exploit-db.com/exploits/19871

This exploit leverages a vulnerability in Zone Labs personal Firewall where port scans originating from source port 67 (UDP) bypass detection. The provided command uses nmap to perform a UDP port scan on ports 130-140 without triggering alerts.

Classification
Scanner 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Zone Labs personal Firewall (ZoneAlarm)
No auth needed
Prerequisites: nmap installed · network access to target host
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/1137
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/1294

Scores

EPSS 0.0726
EPSS Percentile 93.6%

Details

Status published
Products (1)
zonelabs/zonealarm < 2.2.10
Published Apr 24, 2000
Tracked Since Feb 18, 2026