Comodo Firewall Pro Local Protection Mechanism Bypass Vulnerability
BID:22775
Info
Comodo Firewall Pro Local Protection Mechanism Bypass Vulnerability
| Bugtraq ID: | 22775 |
| Class: | Design Error |
| CVE: |
CVE-2007-1330 |
| Remote: | No |
| Local: | Yes |
| Published: | Mar 01 2007 12:00AM |
| Updated: | May 12 2015 07:34PM |
| Credit: | This issue was discovered by Matousec Transparent Security. |
| Vulnerable: |
Comodo Personal Firewall 2.3.6 .81 Comodo Firewall Pro 2.4.18 .184 Comodo Firewall Pro 2.4.17 .183 Comodo Firewall Pro 2.4.16 .174 |
| Not Vulnerable: | |
Discussion
Comodo Firewall Pro Local Protection Mechanism Bypass Vulnerability
Comodo Firewall Pro is prone to a protection-mechanism-bypass vulnerability.
Exploiting this issue allows local attackers to bypass protection mechanisms implemented to restrict access to altering the firewall's configuration settings. This allows them to disable the firewall, aiding them in further attacks.
Comodo Firewall Pro is prone to a protection-mechanism-bypass vulnerability.
Exploiting this issue allows local attackers to bypass protection mechanisms implemented to restrict access to altering the firewall's configuration settings. This allows them to disable the firewall, aiding them in further attacks.
Exploit / POC
Comodo Firewall Pro Local Protection Mechanism Bypass Vulnerability
The following exploit is available:
The following exploit is available:
Solution / Fix
References
Comodo Firewall Pro Local Protection Mechanism Bypass Vulnerability
References:
References:
- Comodo Homepage (Comodo)
- Comodo Bypassing settings protection using magic pipe Vulnerability (Matousec - Transparent security Research