Secunia Security Advisory - Javier Munoz has reported two weaknesses in Kerio WinRoute Firewall, Kerio MailServer and Kerio Personal Firewall, which can be exploited by malicious people to potentially cause a DoS (Denial of Service) and brute force passwords.
cb2a7f5fa13de97d6c732019dc96a00a6fb463b9d1b8ebb7898b49d8410abff7
----------------------------------------------------------------------
Want a new IT Security job?
Vacant positions at Secunia:
http://secunia.com/secunia_vacancies/
----------------------------------------------------------------------
TITLE:
Kerio Products Password Brute Force and Denial of Service
SECUNIA ADVISORY ID:
SA15179
VERIFY ADVISORY:
http://secunia.com/advisories/15179/
CRITICAL:
Not critical
IMPACT:
Brute force, DoS
WHERE:
>From local network
SOFTWARE:
Kerio MailServer 5.x
http://secunia.com/product/1725/
Kerio MailServer 6.x
http://secunia.com/product/3782/
Kerio Personal Firewall 2.x
http://secunia.com/product/1493/
Kerio Personal Firewall 3.x
http://secunia.com/product/2653/
Kerio Personal Firewall 4.x
http://secunia.com/product/2654/
Kerio WinRoute Firewall 5.x
http://secunia.com/product/1350/
Kerio WinRoute Firewall 6.x
http://secunia.com/product/3613/
DESCRIPTION:
Javier Munoz has reported two weaknesses in Kerio WinRoute Firewall,
Kerio MailServer and Kerio Personal Firewall, which can be exploited
by malicious people to potentially cause a DoS (Denial of Service)
and brute force passwords.
1) An error in the remote administration protocol, where multiple
login attempts can be performed over a single connection, can be
exploited to brute force passwords if the username is known.
2) An error in the remote administration protocol in the handling of
certain repeated pre-authentication protocol messages, may be
exploited to cause a vulnerable system to consume a large amount of
CPU resources by continuously sending specially crafted messages.
The weaknesses affect the following versions:
* Kerio WinRoute Firewall version 6.0.10 and prior.
* Kerio MailServer version 6.0.8 and prior.
* Kerio Personal Firewall version 4.1.2 and prior.
SOLUTION:
The weaknesses have been fixed in the following versions:
* Kerio WinRoute Firewall version 6.0.11 and later.
* Kerio MailServer version 6.0.9 and later.
* Kerio Personal Firewall version 4.1.3 and later.
Restrict access to the administration ports.
PROVIDED AND/OR DISCOVERED BY:
Javier Munoz, Secure Computer Group.
ORIGINAL ADVISORY:
Secure Computer Group:
http://research.tic.udc.es/scg/advisories/20050429-1.txt
http://research.tic.udc.es/scg/advisories/20050429-2.txt
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed