Kerio Personal Firewall Remote Authentication Packet Buffer Overflow Vulnerability

Kerio Personal Firewall Remote Authentication Packet Buffer Overflow Vulnerability

CORE has developed a working commercial exploit for their IMPACT product. This exploit is not otherwise publicly available or known to be circulating in the wild.

CORE has released a proof-of-concept python exploit that triggers a denial of service.

An exploit has been made available by Alin-Adrian Anton <aanton@reversedhell.net>

An exploit has been developed by ThreaT of the Skin of Humanity group.

An exploit has been made available as part of the Metasploit Framework project.

/data/vulnerabilities/exploits/kerio-overflow.py
/data/vulnerabilities/exploits/kerio.c
/data/vulnerabilities/exploits/PFExploit.c
/data/vulnerabilities/exploits/kerio_bof_exp.pm
/data/vulnerabilities/exploits/kerio-overflow.pl