← CVECheck
HomeVulnerabilities

CVE-2003-1491 — HIGH severity vulnerability (Kerio Personal Firewall (KPF) 2.1.4 has a default rule to ac)

Kerio Personal Firewall (KPF) 2.1.4 has a default rule to accept incoming packets from DNS (UDP port 53), which allows remote attackers to bypass the firewall filters via packets with a source port of 53.

CVE IDCVE-2003-1491
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWECWE-16, CWE-94
StatusModified
Published2003-12-31
Last modified2026-04-16
DescriptionKerio Personal Firewall (KPF) 2.1.4 has a default rule to accept incoming packets from DNS (UDP port 53), which allows remote attackers to bypass the firewall filters via packets with a source port of 53.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →