Kerio WinRoute Firewall allows DNS cache poisoning
| kerio-winroute-dns-cache-poisoning (18410) |  Medium Risk |
Description:
Kerio WinRoute Firewall could allow a remote attacker to perform DNS cache poisoning, caused by an unspecified vulnerability.
Platforms Affected:
- Kerio, Kerio WinRoute Firewall 6.0.8
Remedy:
Upgrade to the latest version of Kerio WinRoute Firewall (6.0.9 or later), available from the Kerio WinRoute Firewall Download Web page. See References.
Consequences:
Bypass Security
References:
- Kerio WinRoute Firewall Download Web page, Download at http://www.kerio.com/kwf_download.html.
- BID-11870: Kerio WinRoute Firewall Multiple Unspecified Remote Vulnerabilities
- CVE-2004-2483: Kerio WinRoute Firewall before 6.0.9 uses information from PTR queries in response to A queries, which allows remote attackers to poison the DNS cache or cause a denial of service (connection loss).
- OSVDB ID: 12293: Kerio WinRoute Firewall DNS Cache Poisoning Issue
- OSVDB ID: 12294: Kerio WinRoute Firewall SMTP Inspector Unspecified DoS
- SA13374: Kerio WinRoute Firewall Two Vulnerabilities
Reported:
Dec 10, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.
For corrections or additions please email xforce@iss.net