CVE-2007-0708

Loading...

General

Score:7.2/10.0
Severity:Medium
Category:N/A
Exploit:Available

Impact Metrics

Confidentiality:Complete
Integrity:Complete
Availability:Complete

Exploitability Metrics

Access Vector:Local
Access Complexity:Low
Authentication:None

Published on 04/02/07 - Updated on 29/07/17

Description

cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) before 2.4.16.174 does not validate arguments that originate in user mode for the (1) NtConnectPort and (2) NtCreatePort hooked SSDT functions, which allows local users to cause a denial of service (system crash) and possibly gain privileges via invalid arguments.

Category:

There is insufficient information about the issue to classify it; details are unknown or unspecified.

Security Notices

US National Vulnerability DatabaseCVE-2007-0708

Exploits

Exploit-DBEDB-29558
SecurityFocusBID-22357

Relative technologies

VendorProduct
comodocomodo_firewall_pro

Share this vulnerability with:

Twitter Facebook LinkedIn Mail