[原文]Kerio Personal Firewall 4.0 (KPF4) allows local users with administrative privileges to bypass the Application Security feature and execute arbitrary processes by directly writing to \device\physicalmemory to restore the running kernel's SDT ServiceTable.
Kerio Personal Firewall Application Launch Protection DoS
Local Access Required
Denial of Service
Loss of Availability
Kerio Personal Firewall contains a flaw that may allow a remote denial of service. The issue is triggered when a malicious program writes directly to \device\physicalmemory and overwrites the SDT ServiceTable, and will result in loss of availability for the firewall execution protection service.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.