CVE-2019-3973

CWE-787Out-of-bounds Write4 documents4 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 85.15%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Comodo Antivirus
Timeline
PublishedJul 17
Latest updateMay 24

Description

Comodo Antivirus versions 11.0.0.6582 and below are vulnerable to Denial of Service affecting CmdGuard.sys via its filter port "cmdServicePort". A low privileged process can crash CmdVirth.exe to decrease the port's connection count followed by process hollowing a CmdVirth.exe instance with malicious code to obtain a handle to "cmdServicePort". Once this occurs, a specially crafted message can be sent to "cmdServicePort" using "FilterSendMessage" API. This can trigger an out-of-bounds write if l

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

NVDcomodo/antivirus11.0.0.6582
CVEListV5comodo_antivirusVersions 11.0.0.6582 and below

🔴Vulnerability Details

2
GHSA
GHSA-mpmv-49pr-6hch: Comodo Antivirus versions 112022-05-24
CVEList
CVE-2019-3973: Comodo Antivirus versions 112019-07-17

💬Community

1
Bugzilla
CVE-2019-12420 spamassassin: crafted email message can lead to DoS2019-12-18
CVE-2019-3973 (MEDIUM CVSS 5.5) | Comodo Antivirus versions 11.0.0.65 | cvebase.io