---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secunia_vacancies/ ---------------------------------------------------------------------- TITLE: Kerio Products Password Brute Force and Denial of Service SECUNIA ADVISORY ID: SA15179 VERIFY ADVISORY: http://secunia.com/advisories/15179/ CRITICAL: Not critical IMPACT: Brute force, DoS WHERE: >From local network SOFTWARE: Kerio MailServer 5.x http://secunia.com/product/1725/ Kerio MailServer 6.x http://secunia.com/product/3782/ Kerio Personal Firewall 2.x http://secunia.com/product/1493/ Kerio Personal Firewall 3.x http://secunia.com/product/2653/ Kerio Personal Firewall 4.x http://secunia.com/product/2654/ Kerio WinRoute Firewall 5.x http://secunia.com/product/1350/ Kerio WinRoute Firewall 6.x http://secunia.com/product/3613/ DESCRIPTION: Javier Munoz has reported two weaknesses in Kerio WinRoute Firewall, Kerio MailServer and Kerio Personal Firewall, which can be exploited by malicious people to potentially cause a DoS (Denial of Service) and brute force passwords. 1) An error in the remote administration protocol, where multiple login attempts can be performed over a single connection, can be exploited to brute force passwords if the username is known. 2) An error in the remote administration protocol in the handling of certain repeated pre-authentication protocol messages, may be exploited to cause a vulnerable system to consume a large amount of CPU resources by continuously sending specially crafted messages. The weaknesses affect the following versions: * Kerio WinRoute Firewall version 6.0.10 and prior. * Kerio MailServer version 6.0.8 and prior. * Kerio Personal Firewall version 4.1.2 and prior. SOLUTION: The weaknesses have been fixed in the following versions: * Kerio WinRoute Firewall version 6.0.11 and later. * Kerio MailServer version 6.0.9 and later. * Kerio Personal Firewall version 4.1.3 and later. Restrict access to the administration ports. PROVIDED AND/OR DISCOVERED BY: Javier Munoz, Secure Computer Group. ORIGINAL ADVISORY: Secure Computer Group: http://research.tic.udc.es/scg/advisories/20050429-1.txt http://research.tic.udc.es/scg/advisories/20050429-2.txt ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------