[NT] Kerio Personal Firewall Remote DoS (0x13, 0x12)

From: SecuriTeam (support_at_securiteam.com)
Date: 04/14/04

  • Next message: SecuriTeam: "[NT] Microsoft Help and Support Center Argument Injection Vulnerability" 
    To: list@securiteam.com
Date: 14 Apr 2004 09:24:40 +0200

    The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
    - - promotion

    The SecuriTeam alerts list - Free, Accurate, Independent.

    Get your security news from a reliable source.
    http://www.securiteam.com/mailinglist.html

    - - - - - - - - -

      Kerio Personal Firewall Remote DoS (0x13, 0x12)
    ------------------------------------------------------------------------

    SUMMARY

    " <http://www.kerio.com/kpf_home.html> Kerio Personal Firewall (KPF) helps
    users control how their computers exchange data with other computers on
    the Internet or local network".

    KPF filters URLs that passed to and from the user's system. However, some
    arbitrary URLs will crash KPF's GUI application and doing so repeatedly
    will completely crash the Firewall.

    DETAILS

    Vulnerable Systems:
     * Kerio Personal Firewall version 4.0.13

    When filtering URLs that contain the characters 0x13, 0x12, 0x13, the GUI
    application will crash because it cannot handle them. Kerio can also be
    made to crash remotely using URL redirection or an IFRAME. Repeatedly
    sending malformed URLs will eventually cause the Firewall to crash
    entirely.

    Workaround
    Disable web filtering completely until an update is available.

    ADDITIONAL INFORMATION

    The information has been provided by <mailto:me@cipher.org.uk> Emmanouel
    Kellinis.

    ========================================

    This bulletin is sent to members of the SecuriTeam mailing list.
    To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
    In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

    ====================
    ====================

    DISCLAIMER:
    The information in this bulletin is provided "AS IS" without warranty of any kind.
    In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

  • Next message: SecuriTeam: "[NT] Microsoft Help and Support Center Argument Injection Vulnerability"

    Relevant Pages

    • [NT] Internet Explorers Image Decoder Multiple Vulnerabilities
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... a potential remote code execution path in Microsoft Internet Explorer, ... MSIE performed admirably compared to other browsers (although ... Several MSIE crash sample files from that 30-minute run are available at: ...
      (Securiteam)
    • [NEWS] IBM Lotus Domino Server Web Service DoS Vulnerability
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Lotus Domino Server web service allows attackers to crash the service, ... This results in the immediate crash of nHTTP.EXE and is not reported to ... Exploitation of this vulnerability allows unauthenticated remote attackers ...
      (Securiteam)
    • [NEWS] Sun JDK Image Parsing Library Vulnerabilities (More ICC Parsing)
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Sun JDK Image Parsing Library Vulnerabilities ... It causes a crash of the ...
      (Securiteam)
    • [NT] Microsoft IE Recursive Scripting, Embedded Files, window() and Restricted Sites DoS
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Microsoft Internet Explorer, exploiting these vulnerabilities allows ... malicious attacker to crash a vulnerable browser. ... The bug occurs, ...
      (Securiteam)
    • [EXPL] OCE Printer Webserver DoS Exploit
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... The printer runs a webserver to provide various printing tasks from Java ... will either reboot or crash the device. ...
      (Securiteam)