BetaONE will rise again!

BetaONE will rise again! (http:\\b1.hcanet.com\forum/index.php)
-   Internet Security and Privacy (http:\\b1.hcanet.com\forum/forumdisplay.php?f=38)
-   -   Kerio Personal Firewall DOS (http:\\b1.hcanet.com\forum/showthread.php?t=2256)

JacKDynne 4th Sep 02 07:28 PM

Just found this one, ya'll using Kerio might want to have something else installed 'till this gets fixed....Read on....

-----------------------------------------------------------------------------------------------
Kerio Personal Firewall Multiple SYN Packet Denial Of Service Vulnerability BugTraq ID: 5570
Remote: Yes
Date Published: Aug 26 2002 12:00AM
Relevant URL:
h**p://www.securityfocus.com/bid/5570

Summary:

Kerio Personal Firewall (KPF) is a personal firewall product for the Microsoft Windows operating system.

A denial of service vulnerability has been reported in some versions of KPF. When a large number of SYN packets are recieved from a single source, the firewall process will consume all available CPU time, and eventually hang the vulnerable system. A reboot may be required in order to regain normal functionality.

Reportedly, this attack is possible regardless of the configured behavior of the firewall. It has been reported that between 300 and 500 SYN packets is sufficient to exploit this condition in laboratory conditions.
-----------------------------------------------------------------------------------------------
Hope this helps some...:)

/JD



Last edited by JacKDynne at Today at 7:23 am


All times are GMT +1. The time now is 08:03 PM.

Powered by vBulletin® Version 3.6.5
Copyright ©2000 - 2025, Jelsoft Enterprises Ltd.