Published: 24/07/2006 Updated: 17/10/2018

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 215

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

kpf4ss.exe in Sunbelt Kerio Personal Firewall 4.3.x prior to 4.3.268 does not properly hook the CreateRemoteThread API function, which allows local users to cause a denial of service (crash) and bypass protection mechanisms by calling CreateRemoteThread.

Vulnerable Product	Search on Vulmon	Subscribe to Product
kerio personal firewall

source: wwwsecurityfocuscom/bid/18996/info Sunbelt Kerio Personal Firewall is prone to a denial-of-service vulnerability This issue can occur when a program calls the 'CreateRemoteThread' Windows API call Exploitation of this vulnerability could cause the firewall application to crash This could expose the computer to further attacks ...

NVD-CWE-Other http://www.matousec.com/info/advisories/Kerio-Terminating-kpf4ss-exe-using-internal-runtime-error.php http://www.securityfocus.com/bid/18996 http://secunia.com/advisories/21060 http://securityreason.com/securityalert/1260 http://www.vupen.com/english/advisories/2006/2828 http://www.securityfocus.com/archive/1/440112/100/100/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/28228/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-3787

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect