← back
CVE-2004-2329

CVE-2004-2329

EPSS 0.6%
Kerio Personal Firewall (KPF) 2.1.5 allows local users to execute arbitrary code with SYSTEM privileges via the Load button in the Firewall Configuration Files option, which does not drop privileges before opening the file loading dialog box.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/10746/https://exchange.xforce.ibmcloud.com/vulnerabilities/14981http://www.osvdb.org/3748http://www.securityfocus.com/bid/9525http://www.securitytracker.com/alerts/2004/Jan/1008870.htmlhttp://www.tuneld.com/_images/other/kpf_system_privileges.pnghttp://www.tuneld.com/news/?id=30