Details of VAR-200701-0489

ID

VAR-200701-0489

CVE

CVE-2007-0081

TITLE

SKPF Trojan horse in iphlpapi.dll Vulnerability provided

Trust: 0.8

sources: JVNDB: JVNDB-2007-004910

DESCRIPTION

Sunbelt Kerio Personal Firewall (SKPF) 4.3.268 and 4.3.246, and possibly other versions allows local users to provide a Trojan horse iphlpapi.dll to SKPF by placing it in the installation directory. A local attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level privileges. A successful exploit could result in the complete compromise of the affected computer. Versions 4.3.246 and 4.3.268 are vulnerable to this issue; other versions may also be affected. If it cannot be found, it loads it from the operating system directory. Moreover, the software installation directory is writable, and local attackers can create fake ones. DLL file, the firewall service loads and executes the code in it when it is initialized, resulting in the execution of arbitrary instructions of the attacker

Trust: 1.98

sources: NVD: CVE-2007-0081 // JVNDB: JVNDB-2007-004910 // BID: 21828 // VULHUB: VHN-23443

AFFECTED PRODUCTS

vendor:	sunbelt	model:	kerio personal firewall	scope:	eq	version:	4.3.246	Trust: 1.6
vendor:	sunbelt	model:	kerio personal firewall	scope:	eq	version:	4.3.268	Trust: 1.6
vendor:	sunbelt	model:	kerio personal firewall	scope:	eq	version:	4.3.268 and 4.3.246	Trust: 0.8
vendor:	sunbelt	model:	software kerio personal firewall	scope:	eq	version:	4.3.468	Trust: 0.3
vendor:	sunbelt	model:	software kerio personal firewall	scope:	eq	version:	4.3.426	Trust: 0.3

sources: BID: 21828 // JVNDB: JVNDB-2007-004910 // CNNVD: CNNVD-200701-037 // NVD: CVE-2007-0081

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2007-0081
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2007-0081
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-200701-037
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-23443
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2007-0081
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:L/AC:L/AU:S/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.1
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-23443
severity:	MEDIUM
baseScore:	6.8
vectorString:	AV:L/AC:L/AU:S/C:C/I:C/A:C
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.1
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-23443 // JVNDB: JVNDB-2007-004910 // CNNVD: CNNVD-200701-037 // NVD: CVE-2007-0081

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2007-0081

THREAT TYPE

local

Trust: 0.9

sources: BID: 21828 // CNNVD: CNNVD-200701-037

TYPE

Design Error

Trust: 0.9

sources: BID: 21828 // CNNVD: CNNVD-200701-037

CONFIGURATIONS

sources: JVNDB: JVNDB-2007-004910

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-23443

PATCH

title:

Top Page

url:

http://www.kerio.com/

Trust: 0.8

sources: JVNDB: JVNDB-2007-004910

EXTERNAL IDS

db:	NVD	id:	CVE-2007-0081	Trust: 2.5
db:	BID	id:	21828	Trust: 2.0
db:	SREASON	id:	2095	Trust: 1.7
db:	OSVDB	id:	33356	Trust: 1.7
db:	JVNDB	id:	JVNDB-2007-004910	Trust: 0.8
db:	CNNVD	id:	CNNVD-200701-037	Trust: 0.7
db:	BUGTRAQ	id:	20070101 KERIO FAKE 'IPHLPAPI' DLL INJECTION VULNERABILITY	Trust: 0.6
db:	XF	id:	31232	Trust: 0.6
db:	EXPLOIT-DB	id:	29374	Trust: 0.1
db:	SEEBUG	id:	SSVID-82883	Trust: 0.1
db:	VULHUB	id:	VHN-23443	Trust: 0.1

sources: VULHUB: VHN-23443 // BID: 21828 // JVNDB: JVNDB-2007-004910 // CNNVD: CNNVD-200701-037 // NVD: CVE-2007-0081

REFERENCES

url:	http://www.matousec.com/info/advisories/kerio-fake-iphlpapi-dll-injection.php	Trust: 2.0
url:	http://www.securityfocus.com/bid/21828	Trust: 1.7
url:	http://www.osvdb.org/33356	Trust: 1.7
url:	http://securityreason.com/securityalert/2095	Trust: 1.7
url:	http://www.securityfocus.com/archive/1/455624/100/0/threaded	Trust: 1.1
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/31232	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-0081	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-0081	Trust: 0.8
url:	http://xforce.iss.net/xforce/xfdb/31232	Trust: 0.6
url:	http://www.securityfocus.com/archive/1/archive/1/455624/100/0/threaded	Trust: 0.6
url:	http://www.sunbelt-software.com/kerio.cfm	Trust: 0.3
url:	/archive/1/455624	Trust: 0.3

sources: VULHUB: VHN-23443 // BID: 21828 // JVNDB: JVNDB-2007-004910 // CNNVD: CNNVD-200701-037 // NVD: CVE-2007-0081

CREDITS

Matousec http://www.matousec.com/

Trust: 0.6

sources: CNNVD: CNNVD-200701-037

SOURCES

db:	VULHUB	id:	VHN-23443
db:	BID	id:	21828
db:	JVNDB	id:	JVNDB-2007-004910
db:	CNNVD	id:	CNNVD-200701-037
db:	NVD	id:	CVE-2007-0081

LAST UPDATE DATE

2025-04-10T23:16:51.870000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-23443	date:	2018-10-16T00:00:00
db:	BID	id:	21828	date:	2007-01-04T18:28:00
db:	JVNDB	id:	JVNDB-2007-004910	date:	2012-12-20T00:00:00
db:	CNNVD	id:	CNNVD-200701-037	date:	2007-01-15T00:00:00
db:	NVD	id:	CVE-2007-0081	date:	2025-04-09T00:30:58.490

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-23443	date:	2007-01-05T00:00:00
db:	BID	id:	21828	date:	2007-01-01T00:00:00
db:	JVNDB	id:	JVNDB-2007-004910	date:	2012-12-20T00:00:00
db:	CNNVD	id:	CNNVD-200701-037	date:	2007-01-05T00:00:00
db:	NVD	id:	CVE-2007-0081	date:	2007-01-05T11:28:00