GCVE - cpe:2.3:a:kerio:personal_firewall:4.3.246:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:kerio:personal_firewall:4.3.246:*:*:*:*:*:*:*

part: a version: 4.3.246 update: *

Vendor	Kerio (`e69b4c59-3ac5-57d1-90ce-3259775b391e`)
Product	Personal Firewall (`307057e6-de9e-57d4-b6bb-d9835432904d`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2006-5153`	vulnerable	2026-06-08 04:49:19.788778	Details available The (1) fwdrv.sys and (2) khips.sys drivers in Sunbelt Kerio Personal Firewall 4.3.268 and earlier do not validate arguments passed through to SSDT functions, including NtCreateFile, NtDeleteFile, NtLoadDriver, NtMapViewOfSection, NtOpenFile, and NtSetInformationFile, which allows local users to cause a denial of service (crash) and possibly other impacts via unspecified vectors. Published: 2006-10-03T23:00:00.000Z Updated: 2024-08-07T19:41:05.577Z Open on db.gcve.eu Reference links http://www.securityfocus.com/archive/1/447504/100/0/threaded http://securityreason.com/securityalert/1685 http://www.matousec.com/info/advisories/Kerio-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.php http://secunia.com/advisories/22234 http://www.securityfocus.com/bid/20299	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.