|
|
|
|
| |
As a result of its collaboration relationship the Secure Computer Group (SCG) along with dotpi.com Research Labs have determined this security issue on Kerio WinRoute Firewall (KWF), Kerio ServerFirewall (KSF) and Kerio MailServer (KMS).
Kerio WinRoute Firewall (KWF), Kerio ServerFirewall (KSF) and Kerio MailServer (KMS) user credential database system uses symmetric encryption to protect passwords stored on it.
Anyone with a cyphertext of this database (that is, with access to the configuration files) could reverse the encryption using a universal secret key hidden into the program logic.
New versions of the software solve this and other minor problems so it is upgrade its highly recommended. |
| |
Credit:
The information has been provided by Secure Computer Group.
The original article can be found at: http://research.tic.udc.es/scg/advisories/20041214-1.txt
|
| |
Vulnerable Systems:
* Kerio WinRoute Firewall version 6.0.8 and prior
* Kerio ServerFirewall version 1.0.0 and prior
* Kerio MailServer version 6.0.4 and prior
Immune Systems:
* Kerio WinRoute Firewall version 6.0.9
* Kerio ServerFirewall version 1.0.1
* Kerio MailServer version 6.0.5
CVE Information:
CAN-2004-1022
Solutions and recommendations:
Upgrade to the latest versions:
o Kerio WinRoute Firewall 6.0.9
o Kerio ServerFirewall 1.0.1
o Kerio MailServer 6.0.5
As in any other case, follow, as much as possible, the Industry 'Best Practices' on Planning, Deployment and Operation on this kind of services.
Note: Kerio Winroute Firewall 6.0.7 fixed CAN-2004-1022. Kerio Winroute Firewall 6.0.9 is the current version fixing CAN-2004-1022 and CAN-2004-1023
|
|
|
|
|
