28 matches found
EUVD-2007-1048
Malware in sbrugna...
EUVD-2007-1327
Malware in sbrugna...
EUVD-2008-1736
Malware in sbrugna...
Multiple Personal Firewall Products - Local Protection Mechanism Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/23987/info Multiple personal firewall products are prone to a vulnerability that lets attackers bypass protection mechanisms. This issue occurs because the applications fail to properly implement protection mechanisms bas...
Comodo Firewall Pro 2.4.x - Local Protection Mechanism Bypass Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/22775/info Comodo Firewall Pro is prone to a protection-mechanism-bypass vulnerability. Exploiting this issue allows local attackers to bypass protection mechanisms implemented to restrict access to altering the firewall'...
CVE-2008-1736
Comodo Firewall Pro before 3.0 does not properly validate certain parameters to hooked System Service Descriptor Table SSDT functions, which allows local users to cause a denial of service system crash via 1 a crafted OBJECTATTRIBUTES structure in a call to the NtDeleteFile function, which leads ...
Input validation
Comodo Firewall Pro before 3.0 does not properly validate certain parameters to hooked System Service Descriptor Table SSDT functions, which allows local users to cause a denial of service system crash via 1 a crafted OBJECTATTRIBUTES structure in a call to the NtDeleteFile function, which leads ...
CVE-2008-1736
CVE-2008-1736 relates to Comodo Firewall Pro 2.4.18.184 where hooked SSDT functions do not properly validate arguments (notably NtDeleteFile, NtCreateFile, NtSetThreadContext). This can allow a local attacker to trigger a Denial of Service (system crash). The issue is described in CoreLabs CORE-2...
CVE-2008-1736
Comodo Firewall Pro before 3.0 does not properly validate certain parameters to hooked System Service Descriptor Table SSDT functions, which allows local users to cause a denial of service system crash via 1 a crafted OBJECTATTRIBUTES structure in a call to the NtDeleteFile function, which leads ...
CVE-2007-2729
Comodo Firewall Pro 2.4.18.184 and Comodo Personal Firewall 2.3.6.81, and probably older Comodo Firewall versions, do not properly test for equivalence of process identifiers for certain Microsoft Windows API functions in the NT kernel 5.0 and greater, which allows local users to call these...
Bypassing PFW/HIPS open process control with uncommon identifier
Hello, We would like to inform you about a vulnerability in personal firewalls and HIPS software. Description: Windows operating systems with NT kernel version 5.0 and higher i.e. Windows 2000, XP, 2003 use integer numbers divisible by four to identify processes. Internal implementation of system...
Multiple Personal Firewall Products - Local Protection Mechanism Bypass
source: https://www.securityfocus.com/bid/23987/info Multiple personal firewall products are prone to a vulnerability that lets attackers bypass protection mechanisms. This issue occurs because the applications fail to properly implement protection mechanisms based on valid process identifiers...
CVE-2007-1330
Comodo Firewall Pro CFP formerly Comodo Personal Firewall 2.4.18.184 and earlier allows local users to bypass driver protections on the HKLM\SYSTEM\Software\Comodo\Personal Firewall registry key by guessing the name of a named pipe under \Device\NamedPipe\OLE and attempting to open it multiple...
CVE-2007-1330
Comodo Firewall Pro CFP formerly Comodo Personal Firewall 2.4.18.184 and earlier allows local users to bypass driver protections on the HKLM\SYSTEM\Software\Comodo\Personal Firewall registry key by guessing the name of a named pipe under \Device\NamedPipe\OLE and attempting to open it multiple...
KLA10122 SB vulnerability in Comodo Firewall Pro
An unspecified vulnerability was found in Comodo Firewall Pro. By exploiting this vulnerability malicious users can bypass the driver protection for registry keys. This vulnerability can be exploited locally at a point related to OLE NamedPipe. Original advisories - Related products...
Comodo Firewall Pro 2.4.x - Local Protection Mechanism Bypass
source: https://www.securityfocus.com/bid/22775/info Comodo Firewall Pro is prone to a protection-mechanism-bypass vulnerability. Exploiting this issue allows local attackers to bypass protection mechanisms implemented to restrict access to altering the firewall's configuration settings. This...
Comodo Firewall Pro 2.4.x - Local Protection Mechanism Bypass
Comodo Firewall Pro 2.4.x - Local Protection Mechanism Bypass source: https://www.securityfocus.com/bid/22775/info Comodo Firewall Pro is prone to a protection-mechanism-bypass vulnerability. Exploiting this issue allows local attackers to bypass protection mechanisms implemented to restrict acce...
Security feature bypass
Comodo Firewall Pro formerly Comodo Personal Firewall 2.4.17.183 and earlier uses a weak cryptographic hashing function CRC32 to identify trusted modules, which allows local users to bypass security protections by substituting modified modules that have the same CRC32 value...
[Full-disclosure] Comodo DLL injection via weak hash function exploitation Vulnerability
Hello, We would like to inform you about a vulnerability in Comodo Firewall Pro. Description: Comodo Firewall Pro former Comodo Personal Firewall implements a component control, which is based on a checksum comparison of process modules. Probably to achieve a better performance, cyclic redundancy...
Comodo Firewall CMDMon.SYS多个拒绝服务漏洞
Comodo Firewall Pro是一款防火墙应用程序。 Comodo Firewall Pro存在设计错误,远程攻击者可以利用漏洞对应用程序进行拒绝服务攻击。 Comodo Firewall Pro在SSDT中HOOK多个函数,但缺少对来自用户模式中的参数数据,用户使用非法的参数调用NtConnectPort CFP 2.4.16.174不受影响, NtCreatePort CFP 2.4.16.174不受影响, NtCreateSection, NtOpenProcess, NtOpenSection, NtOpenThread...