GCVE - cpe:2.3:a:kerio:winroute_firewall:6.1:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:kerio:winroute_firewall:6.1:*:*:*:*:*:*:*

part: a version: 6.1 update: *

Vendor	Kerio (`e69b4c59-3ac5-57d1-90ce-3259775b391e`)
Product	Winroute Firewall (`da8bfedf-7827-5301-819a-846773349b4d`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2007-6385`	vulnerable	2026-06-08 04:50:08.716566	Details available The proxy server in Kerio WinRoute Firewall before 6.4.1 does not properly enforce authentication for HTTPS pages, which has unknown impact and attack vectors. NOTE: it is not clear whether this issue crosses privilege boundaries. Published: 2007-12-15T02:00:00.000Z Updated: 2024-08-07T16:02:37.092Z Open on db.gcve.eu Reference links http://osvdb.org/42122 http://www.securityfocus.com/bid/26851 http://www.vupen.com/english/advisories/2007/4212 http://www.kerio.com/kwf_history.html https://exchange.xforce.ibmcloud.com/vulnerabilities/39020	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-5420`	vulnerable	2026-06-08 04:49:20.468210	Details available Kerio WinRoute Firewall 6.2.2 and earlier allows remote attackers to cause a denial of service (crash) via malformed DNS responses. Published: 2006-10-20T10:00:00.000Z Updated: 2024-08-07T19:48:30.209Z Open on db.gcve.eu Reference links http://www.vupen.com/english/advisories/2006/4056 http://securitytracker.com/id?1017067 http://secunia.com/advisories/22986 http://www.kerio.com/kwf_history.html https://exchange.xforce.ibmcloud.com/vulnerabilities/29629	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-2267`	vulnerable	2026-06-08 04:49:06.181264	Details available Kerio WinRoute Firewall before 6.2.1 allows remote attackers to cause a denial of service (application crash) via unknown vectors in the "email protocol inspectors," possibly (1) SMTP and (2) POP3. Published: 2006-05-09T10:00:00.000Z Updated: 2024-08-07T17:43:28.736Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/17859 http://www.kerio.com/kwf_history.html http://securitytracker.com/id?1016032 https://exchange.xforce.ibmcloud.com/vulnerabilities/26263 http://www.vupen.com/english/advisories/2006/1677	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-4425`	vulnerable	2026-06-08 04:48:43.784956	Details available Unspecified vulnerability in Kerio WinRoute Firewall before 6.1.3 allows remote attackers to cause a denial of service (crash) via certain RTSP streams. Published: 2005-12-20T11:00:00.000Z Updated: 2024-08-07T23:46:05.085Z Open on db.gcve.eu Reference links http://www.vupen.com/english/advisories/2005/2391 http://www.securityfocus.com/bid/15387 http://secunia.com/advisories/17519 http://www.kerio.com/kwf_history.html https://exchange.xforce.ibmcloud.com/vulnerabilities/23034	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-4157`	not_vulnerable	2026-06-08 04:48:43.105089	Details available Unspecified vulnerability in Kerio WinRoute Firewall before 6.1.3 allows remote attackers to authenticate to the service using an account that has been disabled. Published: 2005-12-11T02:00:00.000Z Updated: 2024-08-07T23:38:51.853Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/15388/ http://www.vupen.com/english/advisories/2005/2391 https://exchange.xforce.ibmcloud.com/vulnerabilities/23035 http://securitytracker.com/alerts/2005/Nov/1015194.html http://www.kerio.com/kwf_history.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.