EUVD-2006-6603

Malware in sbrugna...

Multiple Personal Firewall Products - Local Protection Mechanism Bypass Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23987/info Multiple personal firewall products are prone to a vulnerability that lets attackers bypass protection mechanisms. This issue occurs because the applications fail to properly implement protection mechanisms bas...

Bypassing PFW/HIPS open process control with uncommon identifier

Hello, We would like to inform you about a vulnerability in personal firewalls and HIPS software. Description: Windows operating systems with NT kernel version 5.0 and higher i.e. Windows 2000, XP, 2003 use integer numbers divisible by four to identify processes. Internal implementation of system...

Multiple Personal Firewall Products - Local Protection Mechanism Bypass

source: https://www.securityfocus.com/bid/23987/info Multiple personal firewall products are prone to a vulnerability that lets attackers bypass protection mechanisms. This issue occurs because the applications fail to properly implement protection mechanisms based on valid process identifiers...

CVE-2006-6620

CVE-2006-6620 affects Comodo Personal Firewall 2.3.6.81, which relies on the Process Environment Block (PEB) to identify a process. This allows local users to bypass the product’s controls on a process by spoofing the PEB fields (ImagePathName, CommandLine, WindowTitle). The provided documents do...