Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The FWDRV driver in Kerio Personal Firewall 4.2 and Server Firewall 1.1.1 allows local users to cause a denial of service (crash) by setting the PAGE_NOACCESS or PAGE_GUARD protection on the Page Environment Block (PEB), which triggers an exception, aka the "PEB lockout vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Kerio 个人防火墙和服务器防火墙 PEB lockout 拒绝服务漏洞
Vulnerability Description
Kerio个人防火墙和服务器防火墙都是简单易用的防火墙产品。 Kerio Personal Firewall 4.2和Server Firewall 1.1.1 的FWDRV驱动允许攻击者通过设置PEB上的PAGE_NOACCESS或者PAGE_GUARD保护来引发溢出。Kerio个人防火墙和服务器防火墙都是简单易用的防火墙产品。解析PEB时FWDRV没有检查内存是否可以访问,也就是说如果攻击者可以对PEB设置PAGE_NOACCESS或PAGE_GUARD保护,就会导致异常,机器会蓝屏死机。
CVSS Information
N/A
Vulnerability Type
N/A