Kerio Personal Firewall (KPF) 2.1.4 and earlier allows remote attackers to execute administrator commands by sniffing packets from a valid session and replaying them against the remote administration server.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Personal_firewall_2 | Kerio | 2.1 (including) | 2.1 (including) |
Personal_firewall_2 | Kerio | 2.1.1 (including) | 2.1.1 (including) |
Personal_firewall_2 | Kerio | 2.1.2 (including) | 2.1.2 (including) |
Personal_firewall_2 | Kerio | 2.1.3 (including) | 2.1.3 (including) |
Personal_firewall_2 | Kerio | 2.1.4 (including) | 2.1.4 (including) |