Vendor Dictionary: Kerio Technologies, Inc.

Kerio Technologies, Inc.

Short Name:	Kerio
Previous Names:	[None Entered]
URL:	http://www.kerio.com/ [visit link]
Email:	kpf_bugskerio.com, securitykerio.com
Security URL:	[None Entered]
Security Email:	[None Entered]
Knowledge Base:	[None Entered]
Notes:	[No Notes]
Full Details...

Vulnerabilities by Vendor Product

Kerio Technologies, Inc.

Kerio Technologies, Inc.

Kerio Control: 7.0.2; OSVDB ID: 69532 Kerio Control Web Filter Unspecified Issue

Kerio Server Firewall: 1.1.1; OSVDB ID: 19961 Kerio Personal/Server Firewall Driver Memory Locking Local DoS

Kerio MailServer: 5.6.3; OSVDB ID: 2159 Kerio MailServer do_subscribe Module Overflow; OSVDB ID: 4953 Kerio MailServer add_acl add_name Parameter XSS; OSVDB ID: 4955 Kerio MailServer do_map alias Parameter XSS; OSVDB ID: 4956 Kerio MailServer add_acl Module Overflow; OSVDB ID: 4958 Kerio MailServer do_map Module Overflow; OSVDB ID: 4954 Kerio MailServer list Module Overflow; 5.7.9; OSVDB ID: 6952 Kerio MailServer Caller ID Parsing Infinite Recursion DoS; OSVDB ID: 6953 Kerio MailServer DNS Parser Malformed Packet DoS; OSVDB ID: 6954 Kerio MailServer SMTP Message Size Check Integer Overflow; OSVDB ID: 6955 Kerio MailServer Empty Message DoS; OSVDB ID: 6956 Kerio MailServer Linux AVG plugin Message DoS; 5.7.8; OSVDB ID: 6952 Kerio MailServer Caller ID Parsing Infinite Recursion DoS; OSVDB ID: 6953 Kerio MailServer DNS Parser Malformed Packet DoS; OSVDB ID: 6954 Kerio MailServer SMTP Message Size Check Integer Overflow; OSVDB ID: 6955 Kerio MailServer Empty Message DoS; OSVDB ID: 6956 Kerio MailServer Linux AVG plugin Message DoS; 5.7.7; OSVDB ID: 6952 Kerio MailServer Caller ID Parsing Infinite Recursion DoS; OSVDB ID: 6953 Kerio MailServer DNS Parser Malformed Packet DoS; OSVDB ID: 6954 Kerio MailServer SMTP Message Size Check Integer Overflow; OSVDB ID: 6955 Kerio MailServer Empty Message DoS; OSVDB ID: 6956 Kerio MailServer Linux AVG plugin Message DoS; 5.7.6; OSVDB ID: 6952 Kerio MailServer Caller ID Parsing Infinite Recursion DoS; OSVDB ID: 6953 Kerio MailServer DNS Parser Malformed Packet DoS; OSVDB ID: 6954 Kerio MailServer SMTP Message Size Check Integer Overflow; OSVDB ID: 6955 Kerio MailServer Empty Message DoS; OSVDB ID: 6956 Kerio MailServer Linux AVG plugin Message DoS

WinRoute Firewall: 5.0.1; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 5.0.2; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 5.0.3; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 5.0.4; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 5.0.5; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 5.0.6; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 5.0.7; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 5.0.8; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 5.0.9; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 5.1; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 5.1.1; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 5.1.2; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 5.1.3; OSVDB ID: 2836 Kerio WinRoute Firewall Proxy Discloses User Credentials; 6.0.8; OSVDB ID: 12294 Kerio WinRoute Firewall SMTP Inspector Unspecified DoS; OSVDB ID: 12293 Kerio WinRoute Firewall DNS Cache Poisoning Issue; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.10; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.1; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.2; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.3; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.4; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.5; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.6; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.7; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.9; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.0; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 5.1.10; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; 5.1.9; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; 6.1.4 patch 1; OSVDB ID: 22631 Kerio WinRoute Firewall Unspecified Web Browsing DoS; 6.2.0 Patch 1; OSVDB ID: 25273 Kerio WinRoute Firewall Email Protocol Inspectors Unspecified DoS; OSVDB ID: 25300 Kerio WinRoute Firewall Traffic Policy Rule Bypass; 6.7.1 Patch 2; OSVDB ID: 70285 WinRoute Firewall HTTP Cache Poisoning

Mail Server: 5.0; OSVDB ID: 6295 Kerio MailServer SYN Packet DoS; 6.0.0; OSVDB ID: 8653 Kerio Mailserver Embedded HTTP Server Unspecified Issue; 6.0.2; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS

Personal Firewall: 2.0; OSVDB ID: 3748 Kerio Personal Firewall Configuration File Load Button Privilege Escalation; 2.1; OSVDB ID: 3748 Kerio Personal Firewall Configuration File Load Button Privilege Escalation; 2.1.5; OSVDB ID: 3748 Kerio Personal Firewall Configuration File Load Button Privilege Escalation; 4.0.16; OSVDB ID: 9663 Kerio Personal Firewall Application Launch Protection DoS; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; 4.1.1; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 4.1.0; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 4.0.14; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; 4.0.13; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; 4.1.2; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 4.0.15; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; 4.0.12; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; 4.0.11; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; 4.0.10; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; 4.0.9; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; 4.0.8; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; 4.0.7; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; 4.0.x; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue

Kerio Control: 7.1.0; OSVDB ID: 70286 Kerio Control HTTP Cache Poisoning

Kerio Personal Firewall (KPF): 2.1.4; OSVDB ID: 6294 Kerio Personal Firewall Administrator Authentication Handshake Packet Remote Overflow; 4.0.10; OSVDB ID: 3089 Kerio Personal Firewall TCP Stealth Scan Detection; OSVDB ID: 15123 Kerio Personal Firewall Network Rules Process Masquerade Local Bypass; 4.0.6; OSVDB ID: 15123 Kerio Personal Firewall Network Rules Process Masquerade Local Bypass; 4.0.7; OSVDB ID: 15123 Kerio Personal Firewall Network Rules Process Masquerade Local Bypass; 4.0.8; OSVDB ID: 15123 Kerio Personal Firewall Network Rules Process Masquerade Local Bypass; 4.0.9; OSVDB ID: 15123 Kerio Personal Firewall Network Rules Process Masquerade Local Bypass; 4.0.16; OSVDB ID: 15123 Kerio Personal Firewall Network Rules Process Masquerade Local Bypass; 4.1; OSVDB ID: 15123 Kerio Personal Firewall Network Rules Process Masquerade Local Bypass; 4.1.1; OSVDB ID: 15123 Kerio Personal Firewall Network Rules Process Masquerade Local Bypass; 4.1.2; OSVDB ID: 15123 Kerio Personal Firewall Network Rules Process Masquerade Local Bypass; 4.2.0; OSVDB ID: 19961 Kerio Personal/Server Firewall Driver Memory Locking Local DoS

WebMail: 5.0 -1.1; OSVDB ID: 6296 Kerio MailServer Web Mail Module XSS

MailServer: 5.7.7; OSVDB ID: 8361 Kerio MailServer Webmail Unspecified Race Condition; 5.7.8; OSVDB ID: 8362 Kerio MailServer Malformed Header DoS; 6.0.7; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.6; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.5; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.8; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.4; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.3; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.1; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.0; OSVDB ID: 16052 Multiple Kerio Products Administration Protocol Remote DoS; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.0.2; OSVDB ID: 16051 Multiple Kerio Products Short Password Brute Force Issue; 6.1.3; OSVDB ID: 23772 Kerio MailServer IMAP Crafted LOGIN Command DoS

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.