Just found this one, ya'll using Kerio might want to have something else installed 'till this gets fixed....Read on....
-----------------------------------------------------------------------------------------------
Kerio Personal Firewall Multiple SYN Packet Denial Of Service Vulnerability BugTraq ID: 5570
Remote: Yes
Date Published: Aug 26 2002 12:00AM
Relevant URL:
h**p://www.securityfocus.com/bid/5570
Summary:
Kerio Personal Firewall (KPF) is a personal firewall product for the Microsoft Windows operating system.
A denial of service vulnerability has been reported in some versions of KPF. When a large number of SYN packets are recieved from a single source, the firewall process will consume all available CPU time, and eventually hang the vulnerable system. A reboot may be required in order to regain normal functionality.
Reportedly, this attack is possible regardless of the configured behavior of the firewall. It has been reported that between 300 and 500 SYN packets is sufficient to exploit this condition in laboratory conditions.
-----------------------------------------------------------------------------------------------
Hope this helps some...
/JD
Last edited by JacKDynne at Today at 7:23 am
Linear Mode
