Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Apr 16, 2026

CVE-2004-2329

Description

Kerio Personal Firewall (KPF) 2.1.5 allows local users to execute arbitrary code with SYSTEM privileges via the Load button in the Firewall Configuration Files option, which does not drop privileges before opening the file loading dialog box.

Affected products

Kerio Technologies/Personal Firewall
cpe:2.3:a:kerio:personal_firewall:2.1.5:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securitytracker.com/alerts/2004/Jan/1008870.htmlnvdExploit
www.tuneld.com/news/nvdExploit
secunia.com/advisories/10746/nvdVendor Advisory
www.osvdb.org/3748nvd
www.securityfocus.com/bid/9525nvd
www.tuneld.com/_images/other/kpf_system_privileges.pngnvd
exchange.xforce.ibmcloud.com/vulnerabilities/14981nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000