Kerio Control v9.2.5 - CRLF Injection

Kerio Control, formerly known as Kerio WinRoute Firewall, has been found vulnerable to multiple HTTP Response Splitting vulnerabilities in product affecting versions 9.2.5 id: CVE-2024-52875 info: name: Kerio Control v9.2.5 - CRLF Injection author: ritikchaddha,iamnoooob,rootxharsh,pdresearch...

CVE-2023-25267

An issue was discovered in GFI Kerio Connect 9.4.1 patch 1 fixed in 10.0.0. There is a stack-based Buffer Overflow in the webmail component's 2FASetup function via an authenticated request with a long primaryEMailAddress field to the webmail/api/jsonrpc URI...

CVE-2019-16414

A DOM based XSS in GFI Kerio Control v9.3.0 allows embedding of malicious code and manipulating the login page to send back a victim's cleartext credentials to an attacker via a login/?reason=failure= URI...

EUVD-2005-4152

Malware in sbrugna...

EUVD-2006-6114

Malware in sbrugna...

EUVD-2014-3794

Malware in sbrugna...

EUVD-2004-1021

Malware in sbrugna...

EUVD-2007-3977

Malware in sbrugna...

EUVD-2005-0965

Malware in sbrugna...

EUVD-2009-2630

Malware in sbrugna...

EUVD-2004-1020

Malware in sbrugna...

EUVD-2005-4420

Malware in sbrugna...

EUVD-2006-6537

Malware in sbrugna...

EUVD-2006-2204

Malware in sbrugna...

EUVD-2006-3781

Malware in sbrugna...

EUVD-2006-5796

Malware in sbrugna...

EUVD-2002-1417

Malware in sbrugna...

EUVD-2007-6351

Malware in sbrugna...

EUVD-2006-2268

Malware in sbrugna...

EUVD-2006-5138

Malware in sbrugna...