CVE-2006-5153 Information
Description
The (1) fwdrv.sys and (2) khips.sys drivers in Sunbelt Kerio Personal Firewall 4.3.268 and earlier do not validate arguments passed through to SSDT functions including NtCreateFile NtDeleteFile NtLoadDriver NtMapViewOfSection NtOpenFile and NtSetInformationFile which allows local users to cause a denial of service (crash) and possibly other impacts via unspecified vectors.
Reference
http://secunia.com/advisories/22234 http://securityreason.com/securityalert/1685 http://securitytracker.com/id?1016967 http://www.matousec.com/info/advisories/Kerio-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.php http://www.securityfocus.com/archive/1/447504/100/0/threaded http://www.securityfocus.com/bid/20299 http://www.vupen.com/english/advisories/2006/3872 https://exchange.xforce.ibmcloud.com/vulnerabilities/29313
Share on: