Test ID:	1.3.6.1.4.1.25623.1.0.901194
Category:	General
Title:	Kerio Products 'STARTTLS' Plaintext Command Injection Vulnerability
Summary:	Kerio Mail Server/Connect is prone to plaintext command injection vulnerability.
Description:	Summary: Kerio Mail Server/Connect is prone to plaintext command injection vulnerability. Vulnerability Insight: This flaw is caused by an error within the 'STARTTLS' implementation where the switch from plaintext to TLS is implemented below the application's I/O buffering layer, which could allow attackers to inject commands during the plaintext phase of the protocol via man-in-the-middle attacks. Vulnerability Impact: Successful exploitation will allow attacker to execute arbitrary commands in the context of the user running the application. Affected Software/OS: Kerio MailServer versions 6.x Kerio Connect version 7.1.4 build 2985 Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1506 BugTraq ID: 46767 http://www.securityfocus.com/bid/46767 CERT/CC vulnerability note: VU#555316 http://www.kb.cert.org/vuls/id/555316 http://secunia.com/advisories/43678 http://www.vupen.com/english/advisories/2011/0610 XForce ISS Database: multiple-starttls-command-execution(65932) https://exchange.xforce.ibmcloud.com/vulnerabilities/65932
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.