https://www.exploit-db.com/exploits/19871
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200004-066

ZoneAlarm2.1.10和早期版本在67源端口没有过滤UDP包存在漏洞，远程攻击者可以利用这个漏洞绕过防火墙规则。

source: http://www.securityfocus.com/bid/1137/info

Certain versions of Zone Labs personal Firewall have a vulnerability which allows malicious users to port scan the firewall without being detected. In particular if the port scan originates from source port 67 on the attacking host the ZoneAlarm fails to register the attack.

nmap -g67 -P0 -p130-140 -sU <targethost>

来源:BUGTRAQ
名称:20000420ZoneAlarm
链接:http://www.securityfocus.com/templates/archive.pike?list=1&msg;[email protected]
来源:BID
名称:1137
链接:http://www.securityfocus.com/bid/1137
来源:OSVDB
名称:1294
链接:http://www.osvdb.org/1294