CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-1907

The Web Filtering functionality in Kerio Personal Firewall (KPF) 4.0.13 allows remote attackers to cause a denial of service (crash) by sending hex-encoded URLs containing "%13%12%13".

Exploit prediction scoring system (EPSS) score

EPSS Score 0.09

EPSS Ranking 92.1%

CVSS Severity

CVSS v2 Score 2.6

References

http://archives.neohapsis.com/archives/bugtraq/2004-04/0061.html
http://marc.info/?l=bugtraq&m=108137421524251&w=2
http://secunia.com/advisories/11331
http://www.cipher.org.uk/index.php?p=advisories/HEX-Kerio_Personal_Firewall_Remote_DOS_7-04-2004.advisory
http://www.securityfocus.com/bid/10075
https://exchange.xforce.ibmcloud.com/vulnerabilities/15821
http://archives.neohapsis.com/archives/bugtraq/2004-04/0061.html
http://marc.info/?l=bugtraq&m=108137421524251&w=2
http://secunia.com/advisories/11331
http://www.cipher.org.uk/index.php?p=advisories/HEX-Kerio_Personal_Firewall_Remote_DOS_7-04-2004.advisory
http://www.securityfocus.com/bid/10075
https://exchange.xforce.ibmcloud.com/vulnerabilities/15821

Products affected by CVE-2004-1907

Kerio » Personal Firewall » Version: 4.0.10

cpe:2.3:a:kerio:personal_firewall:4.0.10
Kerio » Personal Firewall » Version: 4.0.6

cpe:2.3:a:kerio:personal_firewall:4.0.6
Kerio » Personal Firewall » Version: 4.0.7

cpe:2.3:a:kerio:personal_firewall:4.0.7
Kerio » Personal Firewall » Version: 4.0.8

cpe:2.3:a:kerio:personal_firewall:4.0.8
Kerio » Personal Firewall » Version: 4.0.9

cpe:2.3:a:kerio:personal_firewall:4.0.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1907

Products

Pricing

Contact Us