• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Kerio Personal Firewall Local Privilege Escalation Vulnerability

It has been reported that Kerio Personal Firewall may be prone to a privilege escalation vulnerability that may allow an attacker to execute code with elevated privileges. It has been reported that a function used to load configuration files can be exploited to execute malicious applications with SYSTEM privileges.

Kerio Personal Firewall 2.1.5 has been reported to be prone to this issue, however, other versions could be affected as well.