Vulnerabilities > Kerio > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-08-07 | CVE-2003-0488 | Cross-Site Scripting vulnerability in Kerio Mailserver 5.6.3 Multiple cross-site scripting (XSS) vulnerabilities in Kerio MailServer 5.6.3 allow remote attackers to insert arbitrary web script via (1) the add_name parameter in the add_acl module, or (2) the alias parameter in the do_map module. | 5.1 |
| 2003-04-11 | CVE-2002-1434 | Cross-Site Scripting vulnerability in Kerio MailServer Web Mail Multiple cross-site scripting (XSS) vulnerabilities in the Web mail module of Kerio MailServer 5.0 allow remote attackers to execute HTML script as other users via certain URLs. network kerio | 6.8 |
| 2003-04-11 | CVE-2002-1433 | Denial-Of-Service vulnerability in Kerio Mailserver 5.0 Kerio MailServer 5.0 allows remote attackers to cause a denial of service (hang) via SYN packets to the supported network services. | 5.0 |
| 2002-12-31 | CVE-2002-2161 | SYN Packet Denial Of Service vulnerability in Kerio Personal Firewall Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to cause a denial of service (hang and CPU consumption) via a SYN packet flood. | 5.0 |