Vulnerability Details CVE-2004-2483
Kerio WinRoute Firewall before 6.0.9 uses information from PTR queries in response to A queries, which allows remote attackers to poison the DNS cache or cause a denial of service (connection loss).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.013
EPSS Ranking 78.6%
CVSS Severity
CVSS v2 Score 6.4
References
- http://secunia.com/advisories/13374
- http://www.kerio.com/security_advisory.html
- http://www.osvdb.org/12293
- http://www.osvdb.org/12294
- http://www.securityfocus.com/bid/11870
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18410
- http://secunia.com/advisories/13374
- http://www.kerio.com/security_advisory.html
- http://www.osvdb.org/12293
- http://www.osvdb.org/12294
- http://www.securityfocus.com/bid/11870
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18410
Products affected by CVE-2004-2483
-
cpe:2.3:a:kerio:winroute_firewall:6.0
-
cpe:2.3:a:kerio:winroute_firewall:6.0.1
-
cpe:2.3:a:kerio:winroute_firewall:6.0.2
-
cpe:2.3:a:kerio:winroute_firewall:6.0.3
-
cpe:2.3:a:kerio:winroute_firewall:6.0.4
-
cpe:2.3:a:kerio:winroute_firewall:6.0.5
-
cpe:2.3:a:kerio:winroute_firewall:6.0.6
-
cpe:2.3:a:kerio:winroute_firewall:6.0.7
-
cpe:2.3:a:kerio:winroute_firewall:6.0.8