Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2003-1491
HistoryOct 24, 2007 - 11:00 p.m.

CVE-2003-1491

2007-10-2423:00:00
CWE-16
CWE-94
[email protected]
web.nvd.nist.gov
52
2
kerio personal firewall
kpf
cve-2003-1491
security
bypass
firewall filter
udp
port 53

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.0%

JSON

Kerio Personal Firewall (KPF) 2.1.4 has a default rule to accept incoming packets from DNS (UDP port 53), which allows remote attackers to bypass the firewall filters via packets with a source port of 53.

Affected configurations

NVD
Node
keriopersonal_firewallMatch2.1.4

Social References

More

Related

cvelist 1
nvd 1
f5 2
nessus 1
cvelist
cvelist
CVE-2003-1491
2007-10-24 23:00:00
nvd
nvd
CVE-2003-1491
2003-12-31 05:00:00
f5
f5
SOL06145135 - Remote DNS security filter vulnerabilities CVE-2003-1491 and CVE-2004-1473
2016-04-05 00:00:00
K06145135 : Remote DNS security filter vulnerabilities CVE-2003-1491 and CVE-2004-1473
2016-04-05 00:00:00
nessus
nessus
Firewall UDP Packet Source Port 53 Ruleset Bypass
2003-05-06 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.009 Low

EPSS

Percentile

83.0%

JSON
Related for CVE-2003-1491
cvelist1nvd1f52nessus1