The (1) fwdrv.sys and (2) khips.sys drivers in Sunbelt Kerio Personal Firewall 4.3.268 and earlier do not validate arguments passed through to SSDT functions, including NtCreateFile, NtDeleteFile, NtLoadDriver, NtMapViewOfSection, NtOpenFile, and NtSetInformationFile, which allows local users to cause a denial of service (crash) and possibly other impacts via unspecified vectors.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P
Vendors Products
Kerio
  • Personal Firewall

Configuration 1 [-]

OR cpe:2.3:a:kerio:personal_firewall:4.0.6:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.0.7:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.0.8:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.0.9:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.0.10:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.0.11:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.0.12:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.0.13:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.0.14:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.0.15:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.0.16:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.1:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.1.0:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.1.2:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.2:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.3.246:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.3.268:*:*:*:*:*:*:*
References
Link Resource
http://secunia.com/advisories/22234 Vendor Advisory
http://securityreason.com/securityalert/1685
http://securitytracker.com/id?1016967
http://www.matousec.com/info/advisories/Kerio-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.php Exploit Vendor Advisory
http://www.securityfocus.com/archive/1/447504/100/0/threaded
http://www.securityfocus.com/bid/20299 Exploit
http://www.vupen.com/english/advisories/2006/3872
https://exchange.xforce.ibmcloud.com/vulnerabilities/29313
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2006-10-03T23:00:00

Updated: 2018-10-17T20:57:01

Reserved: 2006-10-03T00:00:00

Link: CVE-2006-5153

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2006-10-05T04:04:00.000

Modified: 2018-10-17T21:41:28.170

Link: CVE-2006-5153

JSON object: View

cve-icon Redhat Information

No data.

CWE