ZoneAlarm Pro DDE-IPC Advanced Program Control ByPass Weakness
ZoneAlarm Pro is prone to a weakness that permits the bypassing of the Advanced Program Control feature settings. An attacker can exploit this weakness to bypass restrictive settings and transmit data to external sources through the use of permitted applications.
Solution: Reports indicate that this issue has been addressed in the latest release of Zone Labs Security Suite; this has not been confirmed by Symantec.
http://www.securityfocus.com/bid/14966/discuss
PoC in http://hackingspirits.com/vuln-rnd/vuln-rnd.html