Multiple Kerio Products Administration Protocol Remote DoS

2005-04-29T05:28:34
ID OSVDB:16052
Type osvdb
Reporter Javier Munoz(scg@udc.es)
Modified 2005-04-29T05:28:34

Description

Vulnerability Description

Multiple Kerio products contain a flaw that may allow a remote denial of service. The issue is triggered during the pre-authentication state. If a remote attacker forces the system to "compute unexpected conditions", "perform cryptographic operations" or exceed the limit of maximum number of user connections, it will result in loss of availability for the service.

Solution Description

Upgrade to the following versions or higher, as they have been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Kerio Personal Firewall - 4.1.3 Kerio WinRoute Firewall - 6.0.11 Kerio MailServer - 6.0.9

Short Description

Multiple Kerio products contain a flaw that may allow a remote denial of service. The issue is triggered during the pre-authentication state. If a remote attacker forces the system to "compute unexpected conditions", "perform cryptographic operations" or exceed the limit of maximum number of user connections, it will result in loss of availability for the service.

References:

Vendor URL: http://www.kerio.com/ Security Tracker: 1013851 Security Tracker: 1013850 Secunia Advisory ID:15179 Related OSVDB ID: 16051 Other Advisory URL: http://research.tic.udc.es/scg/advisories/20050429-2.txt Other Advisory URL: http://www.securiteam.com/windowsntfocus/5EP060AFPW.html Mail List Post: http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0027.html Keyword: KSEC-2005-04-29-02 ISS X-Force ID: 20337 CVE-2005-1063