header-logo
Suggest Exploit
vendor:
Kerio Personal Firewall
by:
SecurityFocus
7.2
CVSS
HIGH
Local Privilege Escalation
264
CWE
Product Name: Kerio Personal Firewall
Affected Version From: 4.3.0246
Affected Version To: 4.3.0268
Patch Exists: YES
Related CWE: N/A
CPE: a:kerio:kerio_personal_firewall
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2006

Kerio Personal Firewall Local Privilege Escalation Vulnerability

Kerio Personal Firewall is prone to a local privilege-escalation vulnerability. A local attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level privileges. A successful exploit could result in the complete compromise of the affected computer. Versions 4.3.246 and 4.3.268 are vulnerable to this issue; other versions may also be affected.

Mitigation:

Upgrade to the latest version of Kerio Personal Firewall.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/21828/info

Kerio Personal Firewall is prone to a local privilege-escalation vulnerability.

A local attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level privileges. A successful exploit could result in the complete compromise of the affected computer.

Versions 4.3.246 and 4.3.268 are vulnerable to this issue; other versions may also be affected.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/29374.zip

Navigation

Suggest Exploit

Services By CQR