Vulnerabilities > Kerio > Winroute Firewall
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2005-01-10 | CVE-2004-1022 | Unspecified vulnerability in Kerio Mailserver, Serverfirewall and Winroute Firewall Kerio Winroute Firewall before 6.0.7, ServerFirewall before 1.0.1, and MailServer before 6.0.5 use symmetric encryption for user passwords, which allows attackers to decrypt the user database and obtain the passwords by extracting the secret key from within the software. | 2.1 |
| 2004-12-31 | CVE-2004-2483 | Remote vulnerability in Kerio WinRoute Firewall Kerio WinRoute Firewall before 6.0.9 uses information from PTR queries in response to A queries, which allows remote attackers to poison the DNS cache or cause a denial of service (connection loss). | 6.4 |