Kerio Personal Firewall Unspecified Packet Processing Bug May Let Remote Users Deny Service
|
|
SecurityTracker Alert ID: 1012116 |
|
SecurityTracker URL: http://securitytracker.com/id/1012116
|
|
CVE Reference:
CAN-2004-1109
(Links to External Site)
|
Updated: Dec 1 2004
|
Original Entry Date: Nov 8 2004
|
Impact:
Denial of service via network
|
Exploit Included: Yes
|
Version(s): prior to 4.1.2
|
Description:
A vulnerability was reported in Kerio Personal Firewall. A remote user may be able to cause denial of service conditions.
The vendor reported that there is a packet processing flaw that can trigger 100% CPU utilization on the target system. No further details were provided.
[Editor's note: This alert is a duplicate of Alert ID 1012009, originally reported in October 2004. This alert will be deleted shortly. Please refer to Alert ID 1012009 for information on the vulnerability.]
|
Impact:
A remote user may be able to cause excessive CPU utilization on the target system.
|
Solution:
The vendor has issued a fixed version (4.1.2), available at:
http://www.kerio.com/kpf_download.html
|
Vendor URL: www.kerio.com/kpf_home.html (Links to External Site)
|
Cause:
Not specified
|
Underlying OS:
Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Fri, 5 Nov 2004 12:36:30 -0500
Subject: [none]
|
> Kerio Personal Firewall
> 4.1.2 - November 4, 2004
> - fixed bug in packet processing that can cause 100% CPU utilization
|
|
