790 matches found
KLA10122 SB vulnerability in Comodo Firewall Pro
An unspecified vulnerability was found in Comodo Firewall Pro. By exploiting this vulnerability malicious users can bypass the driver protection for registry keys. This vulnerability can be exploited locally at a point related to OLE NamedPipe. Original advisories - Related products...
Comodo Firewall protection bypass
Application uses named pipe with changing, but predictable name which allows to manipulate protection settings...
Comodo Bypassing settings protection using magic pipe Vulnerability
Hello, We would like to inform you about a vulnerability in Comodo Firewall Pro. Description: Comodo Firewall Pro former Comodo Personal Firewall stores some of its internal settings in the registry key HKLMSYSTEMSoftwareComodoPersonal Firewall. This key is protected by Comodo drivers such that...
Comodo Firewall Pro 2.4.x - Local Protection Mechanism Bypass
Comodo Firewall Pro 2.4.x - Local Protection Mechanism Bypass source: https://www.securityfocus.com/bid/22775/info Comodo Firewall Pro is prone to a protection-mechanism-bypass vulnerability. Exploiting this issue allows local attackers to bypass protection mechanisms implemented to restrict acce...
Comodo Firewall Pro 2.4.x - Local Protection Mechanism Bypass
source: https://www.securityfocus.com/bid/22775/info Comodo Firewall Pro is prone to a protection-mechanism-bypass vulnerability. Exploiting this issue allows local attackers to bypass protection mechanisms implemented to restrict access to altering the firewall's configuration settings. This...
CVE-2007-1051
Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.17.183 and earlier uses a weak cryptographic hashing function CRC32 to identify trusted modules, which allows local users to bypass security protections by substituting modified modules that have the same CRC32 value...
Security feature bypass
Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.17.183 and earlier uses a weak cryptographic hashing function CRC32 to identify trusted modules, which allows local users to bypass security protections by substituting modified modules that have the same CRC32 value...
CVE-2007-1051
Comodo Firewall Pro (formerly Comodo Personal Firewall) 2.4.17.183 and earlier is affected by a vulnerability where a weak CRC32 hashing is used to identify trusted modules, allowing local attackers to bypass protections by substituting modified modules with the same CRC32. Root cause: weak modul...
CVE-2007-1051
Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.17.183 and earlier uses a weak cryptographic hashing function CRC32 to identify trusted modules, which allows local users to bypass security protections by substituting modified modules that have the same CRC32 value...
Comodo Firewall 2.32.4 - Flawed Component Control Cryptographic Hash
Comodo Firewall 2.32.4 - Flawed Component Control Cryptographic Hash source: https://www.securityfocus.com/bid/22570/info Comodo Firewall is prone to a design error in its cryptographic hashing function for component controls. Exploiting this flaw permits attackers to bypass the application's...
Comodo firewall protection bypass
CRC32 control checksum is used for files protection making in trivial to bypass it...
[Full-disclosure] Comodo DLL injection via weak hash function exploitation Vulnerability
Hello, We would like to inform you about a vulnerability in Comodo Firewall Pro. Description: Comodo Firewall Pro former Comodo Personal Firewall implements a component control, which is based on a checksum comparison of process modules. Probably to achieve a better performance, cyclic redundancy...
Comodo Firewall 2.3/2.4 - Flawed Component Control Cryptographic Hash
source: https://www.securityfocus.com/bid/22570/info Comodo Firewall is prone to a design error in its cryptographic hashing function for component controls. Exploiting this flaw permits attackers to bypass the application's component controls. The application keeps a list of process-module...
Comodo Firewall CMDMon.SYS多个拒绝服务漏洞
Comodo Firewall Pro是一款防火墙应用程序。 Comodo Firewall Pro存在设计错误,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 Comodo Firewall Pro在SSDT中HOOK多个函数,但缺少对来自用户模式中的参数数据,用户使用非法的参数调用NtConnectPort CFP 2.4.16.174不受影响, NtCreatePort CFP 2.4.16.174不受影响, NtCreateSection, NtOpenProcess, NtOpenSection, NtOpenThread...
Code injection
cmdmon.sys in Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.16.174 and earlier does not validate arguments that originate in user mode for the 1 NtCreateSection, 2 NtOpenProcess, 3 NtOpenSection, 4 NtOpenThread, and 5 NtSetValueKey hooked SSDT functions, which allows local users to...
CVE-2007-0709
cmdmon.sys in Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.16.174 and earlier does not validate arguments that originate in user mode for the 1 NtCreateSection, 2 NtOpenProcess, 3 NtOpenSection, 4 NtOpenThread, and 5 NtSetValueKey hooked SSDT functions, which allows local users to...
Design/Logic Flaw
cmdmon.sys in Comodo Firewall Pro formerly Comodo Personal Firewall before 2.4.16.174 does not validate arguments that originate in user mode for the 1 NtConnectPort and 2 NtCreatePort hooked SSDT functions, which allows local users to cause a denial of service system crash and possibly gain...
CVE-2007-0708
cmdmon.sys in Comodo Firewall Pro formerly Comodo Personal Firewall before 2.4.16.174 does not validate arguments that originate in user mode for the 1 NtConnectPort and 2 NtCreatePort hooked SSDT functions, which allows local users to cause a denial of service system crash and possibly gain...
CVE-2007-0709
Comodo Firewall Pro (formerly Comodo Personal Firewall) versions 2.4.16.174 and earlier are affected by CVE-2007-0709 due to insufficient validation of user-mode arguments for hooked SSDT functions (NtCreateSection, NtOpenProcess, NtOpenSection, NtOpenThread, NtSetValueKey). The underlying issue ...
CVE-2007-0709
cmdmon.sys in Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.16.174 and earlier does not validate arguments that originate in user mode for the 1 NtCreateSection, 2 NtOpenProcess, 3 NtOpenSection, 4 NtOpenThread, and 5 NtSetValueKey hooked SSDT functions, which allows local users to...