Kerio Personal Firewall 4.3 - 'IPHLPAPI.dll' Local Privilege Escalation

Author: Matousec Transparent security
type: local
platform: windows
port: 
date_added: 2007-01-01 
date_updated: 2013-11-11 
verified: 1 
codes: CVE-2007-0081;OSVDB-33356 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/21828/info

Kerio Personal Firewall is prone to a local privilege-escalation vulnerability.

A local attacker could exploit this issue to execute arbitrary machine code with SYSTEM-level privileges. A successful exploit could result in the complete compromise of the affected computer.

Versions 4.3.246 and 4.3.268 are vulnerable to this issue; other versions may also be affected.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/29374.zip