Vulnerabilities > Kerio > Medium

DATE CVE VULNERABILITY TITLE RISK
2003-08-07 CVE-2003-0488 Cross-Site Scripting vulnerability in Kerio Mailserver 5.6.3
Multiple cross-site scripting (XSS) vulnerabilities in Kerio MailServer 5.6.3 allow remote attackers to insert arbitrary web script via (1) the add_name parameter in the add_acl module, or (2) the alias parameter in the do_map module.
network
high complexity
kerio
5.1
2003-04-11 CVE-2002-1434 Cross-Site Scripting vulnerability in Kerio MailServer Web Mail
Multiple cross-site scripting (XSS) vulnerabilities in the Web mail module of Kerio MailServer 5.0 allow remote attackers to execute HTML script as other users via certain URLs.
network
kerio
6.8
2003-04-11 CVE-2002-1433 Denial-Of-Service vulnerability in Kerio Mailserver 5.0
Kerio MailServer 5.0 allows remote attackers to cause a denial of service (hang) via SYN packets to the supported network services.
network
low complexity
kerio
5.0
2002-12-31 CVE-2002-2161 SYN Packet Denial Of Service vulnerability in Kerio Personal Firewall
Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to cause a denial of service (hang and CPU consumption) via a SYN packet flood.
network
low complexity
kerio
5.0