CVE-2004-1658

Published: Sep 2, 2004Modified: Apr 16, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

Kerio Personal Firewall 4.0 (KPF4) allows local users with administrative privileges to bypass the Application Security feature and execute arbitrary processes by directly writing to \device\physicalmemory to restore the running kernel's SDT ServiceTable.

Affected (6)

Products: Kerio: Personal Firewall

1 product

Personal Firewall

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Kerio Personal Firewall	Version 4.0.10
Kerio Personal Firewall	Version 4.0.16
Kerio Personal Firewall	Version 4.0.6
Kerio Personal Firewall	Version 4.0.7
Kerio Personal Firewall	Version 4.0.8
Kerio Personal Firewall	Version 4.0.9

References (10)

http://marc.info/?l=bugtraq&m=109420310631039&w=2

Source: cve@mitre.org

http://secunia.com/advisories/12468/

Source: cve@mitre.org

Vendor Advisory

http://www.security.org.sg/vuln/kerio4016.html

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/11096

Source: cve@mitre.org

ExploitVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/17270

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=109420310631039&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/12468/

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.security.org.sg/vuln/kerio4016.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/11096

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/17270

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.