Multiple Kerio Products Administration Console File Disclosure And Corruption Vulnerability Network Vulnerability

Summary

Multiple Kerio Products are prone to a file disclosure and corruption vulnerability. An attacker can exploit this vulnerability to gain access to files and corrupt data on a vulnerable computer. This may aid in further attacks. Kerio MailServer up to and including version 6.7.3 as well as Kerio WinRoute Firewall up to and including version 6.7.1 patch2 are affected.

Solution

Updates are available. Please see the references for more information.

References

http://www.kerio.com
http://www.kerio.com/support/security-advisories#1006
https://www.securityfocus.com/bid/40505

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 4.4 AV:L/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Microsoft Windows SMTP Server MX Record Denial of Service Vulnerability
MailEnable SMTP HELO Command Denial of Service Vulnerability
Quick 'n Easy Mail Server SMTP Request Remote Denial Of Service Vulnerability
DeepOfix SMTP Authentication Bypass
MailEnable 'MESMTRPC.exe' SMTP Service Multiple Remote Denial of Service Vulnerabilities

Multiple Kerio Products Administration Console File Disclosure and Corruption Vulnerability

Take action and discover your vulnerabilities