CVE-2007-0708
published 2007-02-04CVE-2007-0708: cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) before 2.4.16.174 does not validate arguments that originate in user mode for the (1)…
PriorityP426high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
0.63%
45.8th percentile
cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) before 2.4.16.174 does not validate arguments that originate in user mode for the (1) NtConnectPort and (2) NtCreatePort hooked SSDT functions, which allows local users to cause a denial of service (system crash) and possibly gain privileges via invalid arguments.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| comodo | comodo_firewall_pro | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://securitytracker.com/id?1017580http://www.matousec.com/info/advisories/Comodo-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.phphttp://www.securityfocus.com/archive/1/458773/100/0/threadedhttp://www.securityfocus.com/bid/22357https://exchange.xforce.ibmcloud.com/vulnerabilities/32059http://securitytracker.com/id?1017580http://www.matousec.com/info/advisories/Comodo-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.phphttp://www.securityfocus.com/archive/1/458773/100/0/threadedhttp://www.securityfocus.com/bid/22357https://exchange.xforce.ibmcloud.com/vulnerabilities/32059
2007-02-04
Published