Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kerio personal firewall vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2006-3787
kpf4ss.exe in Sunbelt Kerio Personal Firewall 4.3.x prior to 4.3.268 does not properly hook the CreateRemoteThread API function, which allows local users to cause a denial of service (crash) and bypass protection mechanisms by calling CreateRemoteThread.
Kerio Personal Firewall
1 EDB exploit
2.1
CVSSv2
CVE-2005-3286
The FWDRV driver in Kerio Personal Firewall 4.2 and Server Firewall 1.1.1 allows local users to cause a denial of service (crash) by setting the PAGE_NOACCESS or PAGE_GUARD protection on the Page Environment Block (PEB), which triggers an exception, aka the "PEB lockout vuln...
Kerio Personal Firewall 4.2
Kerio Serverfirewall 1.1.1
7.5
CVSSv2
CVE-2003-1491
Kerio Personal Firewall (KPF) 2.1.4 has a default rule to accept incoming packets from DNS (UDP port 53), which allows remote malicious users to bypass the firewall filters via packets with a source port of 53.
Kerio Personal Firewall 2.1.4
7.2
CVSSv2
CVE-2004-2329
Kerio Personal Firewall (KPF) 2.1.5 allows local users to execute arbitrary code with SYSTEM privileges via the Load button in the Firewall Configuration Files option, which does not drop privileges before opening the file loading dialog box.
Kerio Personal Firewall 2.1.5
2.6
CVSSv2
CVE-2004-1907
The Web Filtering functionality in Kerio Personal Firewall (KPF) 4.0.13 allows remote malicious users to cause a denial of service (crash) by sending hex-encoded URLs containing "%13%12%13".
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2