CVE-2005-3286
https://notcve.org/view.php?id=CVE-2005-3286
The FWDRV driver in Kerio Personal Firewall 4.2 and Server Firewall 1.1.1 allows local users to cause a denial of service (crash) by setting the PAGE_NOACCESS or PAGE_GUARD protection on the Page Environment Block (PEB), which triggers an exception, aka the "PEB lockout vulnerability." • http://lists.grok.org.uk/pipermail/full-disclosure/2005-October/037958.html http://pb.specialised.info/all/adv/kerio-fwdrv-dos-adv.txt http://seclists.org/bugtraq/2005/Oct/166 http://secunia.com/advisories/17155 http://securityreason.com/securityalert/78 http://www.kerio.com/security_advisory.html http://www.osvdb.org/19961 http://www.securityfocus.com/bid/15094 •
CVE-2005-1062
https://notcve.org/view.php?id=CVE-2005-1062
The administration protocol for Kerio WinRoute Firewall 6.x up to 6.0.10, Personal Firewall 4.x up to 4.1.2, and MailServer up to 6.0.8 allows remote attackers to quickly obtain passwords that are 5 characters or less via brute force methods. • http://research.tic.udc.es/scg/advisories/20050429-1.txt http://www.kerio.com/security_advisory.html http://www.securityfocus.com/archive/1/397221 •
CVE-2005-1063
https://notcve.org/view.php?id=CVE-2005-1063
The administration protocol for Kerio WinRoute Firewall 6.x up to 6.0.10, Personal Firewall 4.x up to 4.1.2, and MailServer up to 6.0.8 allows remote attackers to cause a denial of service (CPU consumption) via certain attacks that force the product to "compute unexpected conditions" and "perform cryptographic operations." • http://research.tic.udc.es/scg/advisories/20050429-2.txt http://www.kerio.com/security_advisory.html http://www.securityfocus.com/archive/1/397220 •
CVE-2005-0964
https://notcve.org/view.php?id=CVE-2005-0964
Unknown vulnerability in Kerio Personal Firewall 4.1.2 and earlier allows local users to bypass firewall rules via a malicious process that impersonates a legitimate process that has fewer restrictions. • http://secunia.com/advisories/14717 http://securitytracker.com/id?1013607 http://www.kerio.com/security_advisory.html#0503 http://www.securityfocus.com/bid/12946 https://exchange.xforce.ibmcloud.com/vulnerabilities/19893 •
CVE-2004-2329
https://notcve.org/view.php?id=CVE-2004-2329
Kerio Personal Firewall (KPF) 2.1.5 allows local users to execute arbitrary code with SYSTEM privileges via the Load button in the Firewall Configuration Files option, which does not drop privileges before opening the file loading dialog box. • http://secunia.com/advisories/10746 http://www.osvdb.org/3748 http://www.securityfocus.com/bid/9525 http://www.securitytracker.com/alerts/2004/Jan/1008870.html http://www.tuneld.com/_images/other/kpf_system_privileges.png http://www.tuneld.com/news/?id=30 https://exchange.xforce.ibmcloud.com/vulnerabilities/14981 •