Lucene search
HistoryJan 10, 2005 - 5:00 a.m.
CVE-2004-1109
fwdrv.sys
kerio personal firewall
denial of service
remote attack
vulnerability
nvd
cve-2004-1109
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.7 Medium
AI Score
Confidence
High
0.021 Low
EPSS
Percentile
89.1%
The FWDRV.SYS driver in Kerio Personal Firewall 4.1.1 and earlier allows remote attackers to cause a denial of service (CPU consumption and system freeze from infinite loop) via a (1) TCP, (2) UDP, or (3) ICMP packet with a zero length IP Option field.
Affected configurations
Node
keriopersonal_firewallMatch4.0.6
ORkeriopersonal_firewallMatch4.0.7
ORkeriopersonal_firewallMatch4.0.8
ORkeriopersonal_firewallMatch4.0.9
ORkeriopersonal_firewallMatch4.0.10
ORkeriopersonal_firewallMatch4.0.16
ORkeriopersonal_firewallMatch4.1
ORkeriopersonal_firewallMatch4.1.1
Related
cvelist
cvelist
CVE-2004-1109
2004-12-01 05:00:00
nvd
nvd
CVE-2004-1109
2005-01-10 05:00:00
checkpoint_advisories
checkpoint_advisories
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.7 Medium
AI Score
Confidence
High
0.021 Low
EPSS
Percentile
89.1%
Related for CVE-2004-1109