Summary
The iptables firewall configuration allows to bypass UDP traffic by sending specially crafted UDP packets.
Acknowledgement
Kerlink is pleased to thank BDO Security for reporting this vulnerability under responsible disclosure.
Summary
The service wmp-agent does not properly validate magic URLs which allows remote code execution as user root when the service is accessible via network. Typically, the service is protected via firewall.
Acknowledgement
Kerlink is pleased to thank BDO Security for reporting this vulnerability under responsible disclosure.
Summary
The web interface is only accessible via HTTP not via HTTPS, thus allowing a man-in-the-middle attacker to sniff and manipulate the connection.
Workaround
HTTPS is available since version 5.10. Please refer to KerOS Wiki for detailed instructions on how to enabled HTTPS.
Acknowledgement
Kerlink is pleased to thank BDO Security for reporting this vulnerability under responsible disclosure.