Details of VAR-200505-0521

ID

VAR-200505-0521

CVE

CVE-2005-0964

TITLE

Kerio Personal Firewall Local Network Access Restriction Bypass Vulnerability

Trust: 0.9

sources: BID: 12946 // CNNVD: CNNVD-200505-386

DESCRIPTION

Unknown vulnerability in Kerio Personal Firewall 4.1.2 and earlier allows local users to bypass firewall rules via a malicious process that impersonates a legitimate process that has fewer restrictions. This issue is due to a design error that causes the application to fail to properly validate the origin of network requests. An attacker may leverage this issue to bypass network access restrictions, potentially leading administrators to a false sense of security

Trust: 1.26

sources: NVD: CVE-2005-0964 // BID: 12946 // VULHUB: VHN-12173

AFFECTED PRODUCTS

vendor:	kerio	model:	personal firewall	scope:	eq	version:	4.1.2	Trust: 1.9
vendor:	kerio	model:	personal firewall	scope:	eq	version:	4.1.1	Trust: 1.9
vendor:	kerio	model:	personal firewall	scope:	eq	version:	4.1	Trust: 1.9
vendor:	kerio	model:	personal firewall	scope:	eq	version:	4.0.16	Trust: 1.9
vendor:	kerio	model:	personal firewall	scope:	eq	version:	4.0.10	Trust: 1.9
vendor:	kerio	model:	personal firewall	scope:	eq	version:	4.0.9	Trust: 1.9
vendor:	kerio	model:	personal firewall	scope:	eq	version:	4.0.8	Trust: 1.9
vendor:	kerio	model:	personal firewall	scope:	eq	version:	4.0.7	Trust: 1.9
vendor:	kerio	model:	personal firewall	scope:	eq	version:	4.0.6	Trust: 1.9
vendor:	kerio	model:	personal firewall	scope:	ne	version:	4.1.3	Trust: 0.3

sources: BID: 12946 // CNNVD: CNNVD-200505-386 // NVD: CVE-2005-0964

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2005-0964
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200505-386
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-12173
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2005-0964
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-12173
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-12173 // CNNVD: CNNVD-200505-386 // NVD: CVE-2005-0964

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2005-0964

THREAT TYPE

local

Trust: 0.9

sources: BID: 12946 // CNNVD: CNNVD-200505-386

TYPE

Design Error

Trust: 0.9

sources: BID: 12946 // CNNVD: CNNVD-200505-386

EXTERNAL IDS

db:	NVD	id:	CVE-2005-0964	Trust: 2.0
db:	BID	id:	12946	Trust: 2.0
db:	SECUNIA	id:	14717	Trust: 1.7
db:	SECTRACK	id:	1013607	Trust: 1.7
db:	CNNVD	id:	CNNVD-200505-386	Trust: 0.7
db:	XF	id:	19893	Trust: 0.6
db:	VULHUB	id:	VHN-12173	Trust: 0.1

sources: VULHUB: VHN-12173 // BID: 12946 // CNNVD: CNNVD-200505-386 // NVD: CVE-2005-0964

REFERENCES

url:	http://www.kerio.com/security_advisory.html#0503	Trust: 2.0
url:	http://www.securityfocus.com/bid/12946	Trust: 1.7
url:	http://securitytracker.com/id?1013607	Trust: 1.7
url:	http://secunia.com/advisories/14717	Trust: 1.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/19893	Trust: 1.1
url:	http://xforce.iss.net/xforce/xfdb/19893	Trust: 0.6
url:	http://www.sunbelt-software.com/kerio.cfm	Trust: 0.3

sources: VULHUB: VHN-12173 // BID: 12946 // CNNVD: CNNVD-200505-386 // NVD: CVE-2005-0964

CREDITS

Petr Matousek of Masaryk University is credited with the discovery of this issue.

Trust: 0.9

sources: BID: 12946 // CNNVD: CNNVD-200505-386

SOURCES

db:	VULHUB	id:	VHN-12173
db:	BID	id:	12946
db:	CNNVD	id:	CNNVD-200505-386
db:	NVD	id:	CVE-2005-0964

LAST UPDATE DATE

2024-08-14T13:40:11.656000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-12173	date:	2017-07-11T00:00:00
db:	BID	id:	12946	date:	2009-07-12T11:56:00
db:	CNNVD	id:	CNNVD-200505-386	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2005-0964	date:	2017-07-11T01:32:28.530

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-12173	date:	2005-05-02T00:00:00
db:	BID	id:	12946	date:	2005-03-30T00:00:00
db:	CNNVD	id:	CNNVD-200505-386	date:	2005-05-02T00:00:00
db:	NVD	id:	CVE-2005-0964	date:	2005-05-02T04:00:00