Lucene search

[email protected]CVE-2005-3286

HistoryOct 23, 2005 - 10:02 a.m.

CVE-2005-3286

2005-10-2310:02:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

kerio personal firewall

server firewall

denial of service

fwdrv driver

vulnerability

nvd

cve-2005-3286

7 High

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON

The FWDRV driver in Kerio Personal Firewall 4.2 and Server Firewall 1.1.1 allows local users to cause a denial of service (crash) by setting the PAGE_NOACCESS or PAGE_GUARD protection on the Page Environment Block (PEB), which triggers an exception, aka the “PEB lockout vulnerability.”

CPENameOperatorVersion
kerio:personal_firewallkerio personal firewalleq4.2
kerio:serverfirewallkerio serverfirewalleq1.1.1

CPE	Name	Operator	Version
kerio:personal_firewall	kerio personal firewall	eq	4.2
kerio:serverfirewall	kerio serverfirewall	eq	1.1.1

References

lists.grok.org.uk/pipermail/full-disclosure/2005-October/037958.html

pb.specialised.info/all/adv/kerio-fwdrv-dos-adv.txt

seclists.org/bugtraq/2005/Oct/166

secunia.com/advisories/17155

securityreason.com/securityalert/78

www.kerio.com/security_advisory.html

www.osvdb.org/19961

www.securityfocus.com/bid/15094

7 High

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

5.3%

JSON