Comodo Personal Firewall Security Vulnerabilities and Issues — Comodo Personal Firewall CVE List

ComodoComodo Personal Firewall

9 matches found

CVE•added 2007/05/16 10:0 p.m.•62 views

CVE-2007-2730

Technical details about CVE-2007-2730 are not publicly provided in the supplied documents. No explicit affected products, root cause, or fixes are described here. Monitor for updates from official advisories.

7.2CVSS6.5AI score0.00321EPSS

CVE•added 2006/12/18 11:0 a.m.•53 views

CVE-2006-6623

Sygate Personal Firewall 5.6.2808 is affected. The flaw arises from relying on the Process Environment Block (PEB) to identify a process, allowing local attackers to bypass product controls by spoofing the PEB fields (ImagePathName, CommandLine, and WindowTitle). The connected documents confirm t...

7.2CVSS6.6AI score0.00303EPSS

CVE•added 2007/05/16 10:0 p.m.•52 views

CVE-2007-2729

CVE-2007-2729 affects Comodo Firewall Pro 2.4.18.184 and Comodo Personal Firewall 2.3.6.81 (and likely older Comodo firewall versions). The issue arises from improper testing of equivalence of process identifiers for certain Windows API functions in the NT kernel (version 5.0 and greater). This a...

7.2CVSS6.5AI score0.00321EPSS

CVE•added 2008/04/29 11:0 p.m.•50 views

CVE-2008-1736

CVE-2008-1736 relates to Comodo Firewall Pro 2.4.18.184 where hooked SSDT functions do not properly validate arguments (notably NtDeleteFile, NtCreateFile, NtSetThreadContext). This can allow a local attacker to trigger a Denial of Service (system crash). The issue is described in CoreLabs CORE-2...

7.2CVSS6AI score0.00367EPSS

CVE•added 2006/12/18 11:0 a.m.•47 views

CVE-2006-6622

Soft4Ever Look 'n' Stop (LnS) 2.05p2 (pre-20061215) is affected. The flaw arises because LnS relies on the Process Environment Block (PEB) to identify a target process, enabling local attackers to spoof PEB fields (ImagePathName, CommandLine, WindowTitle) and bypass the software’s process control...

7.2CVSS6.6AI score0.00313EPSS

CVE•added 2006/12/18 11:0 a.m.•44 views

CVE-2006-6620

CVE-2006-6620 affects Comodo Personal Firewall 2.3.6.81, which relies on the Process Environment Block (PEB) to identify a process. This allows local users to bypass the product’s controls on a process by spoofing the PEB fields (ImagePathName, CommandLine, WindowTitle). The provided documents do...

7.2CVSS6.6AI score0.00303EPSS

CVE•added 2006/12/18 11:0 a.m.•44 views

CVE-2006-6621

The CVE-2006-6621 entry concerns Filseclab Personal Firewall 3.0.0.8686, which relies on the Process Environment Block (PEB) to identify a process. The root cause is spoofing of PEB fields (ImagePathName, CommandLine, WindowTitle), enabling local users to bypass the product’s controls on a proces...

7.2CVSS6.7AI score0.00303EPSS

CVE•added 2006/12/18 11:0 a.m.•43 views

CVE-2006-6618

The CVE-2006-6618 entry concerns AntiHook 3.0.0.23, where the Desktop component relies on the Process Environment Block (PEB) to identify a target process. The vulnerability arises because an attacker can spoof PEB fields (ImagePathName, CommandLine, and WindowTitle), enabling local privilege con...

7.2CVSS6.6AI score0.00303EPSS

CVE•added 2006/12/18 11:0 a.m.•39 views

CVE-2006-6619

CVE-2006-6619 affects AVG Anti-Virus plus Firewall 7.5.431. The vulnerability arises from the product using the Process Environment Block (PEB) to identify a process, allowing a local attacker to bypass the product’s controls by spoofing the PEB fields: ImagePathName, CommandLine, and WindowTitle...

7.2CVSS6.6AI score0.00935EPSS