CVE-2005-3286 - The FWDRV driver in Kerio Personal Firewall 4.2 and Server Firewall 1.1.1 allows local users to caus

CVE-2005-3286

Summary

The FWDRV driver in Kerio Personal Firewall 4.2 and Server Firewall 1.1.1 allows local users to cause a denial of service (crash) by setting the PAGE_NOACCESS or PAGE_GUARD protection on the Page Environment Block (PEB), which triggers an exception, aka the "PEB lockout vulnerability."

References

Vulnerable Configurations

cpe:2.3:a:kerio:personal_firewall:4.2:*:*:*:*:*:*:*
cpe:2.3:a:kerio:personal_firewall:4.2:*:*:*:*:*:*:*
cpe:2.3:a:kerio:serverfirewall:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:kerio:serverfirewall:1.1.1:*:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 13-12-2012 - 02:43)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	15094
bugtraq	20051013 Kerio Personal Firewall and Kerio Server Firewall FWDRV driver Local Denial of Service
confirm	http://www.kerio.com/security_advisory.html
fulldisc	20051013 Kerio Personal Firewall and Kerio Server Firewall FWDRV driver Local Denial of Service
misc	http://pb.specialised.info/all/adv/kerio-fwdrv-dos-adv.txt
osvdb	19961
secunia	17155
sreason	78

Last major update

13-12-2012 - 02:43

Published

23-10-2005 - 10:02

Last modified

13-12-2012 - 02:43