CVE-2006-6618

2006-12-1811:00:00

mitre

www.cve.org

AI Score

6.3

Confidence

Low

EPSS

Percentile

9.5%

JSON

AntiHook 3.0.0.23 - Desktop relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product’s controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB.

References

www.matousec.com/downloads/windows-personal-firewall-analysis/ex-coat.zip

www.matousec.com/info/advisories/Bypassing-process-identification-serveral-personal-firewalls-HIPS.php

www.securityfocus.com/archive/1/454522/100/0/threaded

www.securityfocus.com/bid/21615