Downloads

Download Kerio Personal Firewall 2.1.5

By admin
Spread the love

Kerio has released an update for its Personal Firewall that fixes two security bugs in their remote administration system. This program is a nice firewall and is also free for home use. The changelog looks like this:

*Vulnerability Description*
Kerio Personal Firewall (KPF) is a firewall for workstations designed to protect them against attacks from the Internet and the local network. We found two security vulnerabilities in KPF’s remote administration system:

[BID 7179]
A replay attack is possible against the authenticated/encrypted channel for remote administration. A design problem in the authentication mechanism for remote administration allows an attacker to replay captured packets from a valid remote administration session in order to reproduce the administrator’s directives to the personal firewall.

For example if the attacker is able to sniff a valid session in which the administrator disabled the firewall capabilities, then the attacker will gain the ability to disable the personal firewall at will at any time in the future.

[BID 7180]
A remotely exploitable buffer overflow exists in the administrator authentication process.

*Vulnerable Packages*
Kerio Personal Firewall version 2.1.4 and previous versions.[break]For more information about the security bug, click here

Version number 2.1.5
Operating systems Windows 9x, Windows NT, Windows 2000, Windows XP
Website Kerio
Download
License type Conditions (GNU/BSD/etc.)
You might also like
Apps

Popular apps Pixelmator and Photomator are now from Apple

News

MacOS Sequoia 15.3.1 is out: what’s new for your Mac?

News

iOS 18.3.1 is out (and this is why you have to update)

News

WatchOS 11 is out: This update makes your heart beat faster

News

Rumor: Apple is working on its own applications based on a large language model

News

EU Council determines position on security requirements for digital products