Vulnerabilities > Kerio > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-05-09 | CVE-2006-2267 | Remote Denial of Service vulnerability in Kerio WinRoute Firewall Kerio WinRoute Firewall before 6.2.1 allows remote attackers to cause a denial of service (application crash) via unknown vectors in the "email protocol inspectors," possibly (1) SMTP and (2) POP3. | 5.0 |
| 2006-05-05 | CVE-2006-2203 | Remote Security vulnerability in Kerio Mailserver Unspecified vulnerability in Kerio MailServer before 6.1.4 has unknown impact and remote attack vectors related to a "possible bypass of attachment filter." | 6.4 |
| 2006-01-21 | CVE-2006-0336 | Denial of Service vulnerability in Kerio WinRoute Firewall Web Browsing Kerio WinRoute Firewall before 6.1.4 Patch 2 allows attackers to cause a denial of service (CPU consumption and hang) via unknown vectors involving "browsing the web". | 5.0 |
| 2006-01-21 | CVE-2006-0335 | Denial of Service vulnerability in Kerio WinRoute Firewall Multiple unspecified vulnerabilities in Kerio WinRoute Firewall before 6.1.4 Patch 1 allow remote attackers to cause a denial of service via multiple unspecified vectors involving (1) long strings received from Active Directory and (2) the filtering of HTML. | 5.0 |
| 2005-05-02 | CVE-2005-0964 | Local Network Access Restriction Bypass vulnerability in Kerio Personal Firewall Unknown vulnerability in Kerio Personal Firewall 4.1.2 and earlier allows local users to bypass firewall rules via a malicious process that impersonates a legitimate process that has fewer restrictions. | 4.6 |
| 2005-04-29 | CVE-2005-1063 | Unspecified vulnerability in Kerio products The administration protocol for Kerio WinRoute Firewall 6.x up to 6.0.10, Personal Firewall 4.x up to 4.1.2, and MailServer up to 6.0.8 allows remote attackers to cause a denial of service (CPU consumption) via certain attacks that force the product to "compute unexpected conditions" and "perform cryptographic operations." | 5.0 |
| 2005-04-18 | CVE-2005-1138 | Denial-Of-Service vulnerability in Kerio Mailserver Unknown vulnerability in WebMail in Kerio MailServer before 6.0.9 allows remote attackers to cause a denial of service (CPU consumption) via certain e-mail messages. | 5.0 |
| 2005-01-10 | CVE-2004-1109 | Denial Of Service vulnerability in Kerio Personal Firewall IP Options The FWDRV.SYS driver in Kerio Personal Firewall 4.1.1 and earlier allows remote attackers to cause a denial of service (CPU consumption and system freeze from infinite loop) via a (1) TCP, (2) UDP, or (3) ICMP packet with a zero length IP Option field. | 5.0 |
| 2004-12-31 | CVE-2004-2483 | Remote vulnerability in Kerio WinRoute Firewall Kerio WinRoute Firewall before 6.0.9 uses information from PTR queries in response to A queries, which allows remote attackers to poison the DNS cache or cause a denial of service (connection loss). | 6.4 |
| 2004-09-02 | CVE-2004-1658 | Unspecified vulnerability in Kerio Personal Firewall Kerio Personal Firewall 4.0 (KPF4) allows local users with administrative privileges to bypass the Application Security feature and execute arbitrary processes by directly writing to \device\physicalmemory to restore the running kernel's SDT ServiceTable. | 4.6 |