Lucene search
K

790 matches found

Kaspersky
Kaspersky
added 2007/03/07 12:0 a.m.31 views

KLA10122 SB vulnerability in Comodo Firewall Pro

An unspecified vulnerability was found in Comodo Firewall Pro. By exploiting this vulnerability malicious users can bypass the driver protection for registry keys. This vulnerability can be exploited locally at a point related to OLE NamedPipe. Original advisories - Related products...

4.4CVSS6.6AI score0.00692EPSS
Exploits0References2
securityvulns
securityvulns
added 2007/03/02 12:0 a.m.46 views

Comodo Firewall protection bypass

Application uses named pipe with changing, but predictable name which allows to manipulate protection settings...

4.4CVSS2.8AI score0.00692EPSS
Exploits0References1Affected Software2
securityvulns
securityvulns
added 2007/03/02 12:0 a.m.25 views

Comodo Bypassing settings protection using magic pipe Vulnerability

Hello, We would like to inform you about a vulnerability in Comodo Firewall Pro. Description: Comodo Firewall Pro former Comodo Personal Firewall stores some of its internal settings in the registry key HKLMSYSTEMSoftwareComodoPersonal Firewall. This key is protected by Comodo drivers such that...

0.9AI score
Exploits0
exploitpack
exploitpack
added 2007/03/01 12:0 a.m.10 views

Comodo Firewall Pro 2.4.x - Local Protection Mechanism Bypass

Comodo Firewall Pro 2.4.x - Local Protection Mechanism Bypass source: https://www.securityfocus.com/bid/22775/info Comodo Firewall Pro is prone to a protection-mechanism-bypass vulnerability. Exploiting this issue allows local attackers to bypass protection mechanisms implemented to restrict acce...

Exploits0
Exploit DB
Exploit DB
added 2007/03/01 12:0 a.m.31 views

Comodo Firewall Pro 2.4.x - Local Protection Mechanism Bypass

source: https://www.securityfocus.com/bid/22775/info Comodo Firewall Pro is prone to a protection-mechanism-bypass vulnerability. Exploiting this issue allows local attackers to bypass protection mechanisms implemented to restrict access to altering the firewall's configuration settings. This...

7.4AI score
Exploits0
NVD
NVD
added 2007/02/21 11:28 p.m.19 views

CVE-2007-1051

Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.17.183 and earlier uses a weak cryptographic hashing function CRC32 to identify trusted modules, which allows local users to bypass security protections by substituting modified modules that have the same CRC32 value...

4.6CVSS6.4AI score0.00341EPSS
Exploits0References6
Prion
Prion
added 2007/02/21 11:28 p.m.12 views

Security feature bypass

Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.17.183 and earlier uses a weak cryptographic hashing function CRC32 to identify trusted modules, which allows local users to bypass security protections by substituting modified modules that have the same CRC32 value...

4.6CVSS6.9AI score0.00341EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2007/02/21 11:0 p.m.55 views

CVE-2007-1051

Comodo Firewall Pro (formerly Comodo Personal Firewall) 2.4.17.183 and earlier is affected by a vulnerability where a weak CRC32 hashing is used to identify trusted modules, allowing local attackers to bypass protections by substituting modified modules with the same CRC32. Root cause: weak modul...

4.6CVSS6.4AI score0.00341EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2007/02/21 11:0 p.m.22 views

CVE-2007-1051

Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.17.183 and earlier uses a weak cryptographic hashing function CRC32 to identify trusted modules, which allows local users to bypass security protections by substituting modified modules that have the same CRC32 value...

6.4AI score0.00341EPSS
Exploits0References6
exploitpack
exploitpack
added 2007/02/15 12:0 a.m.10 views

Comodo Firewall 2.32.4 - Flawed Component Control Cryptographic Hash

Comodo Firewall 2.32.4 - Flawed Component Control Cryptographic Hash source: https://www.securityfocus.com/bid/22570/info Comodo Firewall is prone to a design error in its cryptographic hashing function for component controls. Exploiting this flaw permits attackers to bypass the application's...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2007/02/15 12:0 a.m.46 views

Comodo firewall protection bypass

CRC32 control checksum is used for files protection making in trivial to bypass it...

4.6CVSS3.9AI score0.00341EPSS
Exploits0References1Affected Software2
securityvulns
securityvulns
added 2007/02/15 12:0 a.m.43 views

[Full-disclosure] Comodo DLL injection via weak hash function exploitation Vulnerability

Hello, We would like to inform you about a vulnerability in Comodo Firewall Pro. Description: Comodo Firewall Pro former Comodo Personal Firewall implements a component control, which is based on a checksum comparison of process modules. Probably to achieve a better performance, cyclic redundancy...

0.6AI score
Exploits0
Exploit DB
Exploit DB
added 2007/02/15 12:0 a.m.20 views

Comodo Firewall 2.3/2.4 - Flawed Component Control Cryptographic Hash

source: https://www.securityfocus.com/bid/22570/info Comodo Firewall is prone to a design error in its cryptographic hashing function for component controls. Exploiting this flaw permits attackers to bypass the application's component controls. The application keeps a list of process-module...

7AI score
Exploits0
seebug.org
seebug.org
added 2007/02/11 12:0 a.m.27 views

Comodo Firewall CMDMon.SYS多个拒绝服务漏洞

Comodo Firewall Pro是一款防火墙应用程序。 Comodo Firewall Pro存在设计错误,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 Comodo Firewall Pro在SSDT中HOOK多个函数,但缺少对来自用户模式中的参数数据,用户使用非法的参数调用NtConnectPort CFP 2.4.16.174不受影响, NtCreatePort CFP 2.4.16.174不受影响, NtCreateSection, NtOpenProcess, NtOpenSection, NtOpenThread...

7.1AI score
Exploits0
Prion
Prion
added 2007/02/04 12:28 a.m.20 views

Code injection

cmdmon.sys in Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.16.174 and earlier does not validate arguments that originate in user mode for the 1 NtCreateSection, 2 NtOpenProcess, 3 NtOpenSection, 4 NtOpenThread, and 5 NtSetValueKey hooked SSDT functions, which allows local users to...

7.2CVSS6.8AI score0.00458EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2007/02/04 12:28 a.m.22 views

CVE-2007-0709

cmdmon.sys in Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.16.174 and earlier does not validate arguments that originate in user mode for the 1 NtCreateSection, 2 NtOpenProcess, 3 NtOpenSection, 4 NtOpenThread, and 5 NtSetValueKey hooked SSDT functions, which allows local users to...

7.2CVSS6.4AI score0.00458EPSS
Exploits1References5
Prion
Prion
added 2007/02/04 12:28 a.m.21 views

Design/Logic Flaw

cmdmon.sys in Comodo Firewall Pro formerly Comodo Personal Firewall before 2.4.16.174 does not validate arguments that originate in user mode for the 1 NtConnectPort and 2 NtCreatePort hooked SSDT functions, which allows local users to cause a denial of service system crash and possibly gain...

7.2CVSS7.1AI score0.00634EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2007/02/04 12:28 a.m.24 views

CVE-2007-0708

cmdmon.sys in Comodo Firewall Pro formerly Comodo Personal Firewall before 2.4.16.174 does not validate arguments that originate in user mode for the 1 NtConnectPort and 2 NtCreatePort hooked SSDT functions, which allows local users to cause a denial of service system crash and possibly gain...

7.2CVSS6.6AI score0.00634EPSS
Exploits0References5
CVE
CVE
added 2007/02/04 12:0 a.m.48 views

CVE-2007-0709

Comodo Firewall Pro (formerly Comodo Personal Firewall) versions 2.4.16.174 and earlier are affected by CVE-2007-0709 due to insufficient validation of user-mode arguments for hooked SSDT functions (NtCreateSection, NtOpenProcess, NtOpenSection, NtOpenThread, NtSetValueKey). The underlying issue ...

7.2CVSS6.5AI score0.00458EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2007/02/04 12:0 a.m.27 views

CVE-2007-0709

cmdmon.sys in Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.16.174 and earlier does not validate arguments that originate in user mode for the 1 NtCreateSection, 2 NtOpenProcess, 3 NtOpenSection, 4 NtOpenThread, and 5 NtSetValueKey hooked SSDT functions, which allows local users to...

6.4AI score0.00458EPSS
Exploits1References5
Rows per page
Query Builder