Comodo Firewall protection bypass updated since 01.03.2007
Published:		02.03.2007
Source:		SECURITEAM
SecurityVulns ID:		7331
Type:		local
Level:		4/10
Description:		Application uses named pipe with changing, but predictable name which allows to manipulate protection settings.

Affected:		COMODO : Comodo Firewall Pro 2.4
		COMODO : Comodo Personal Firewall 2.3
CVE:		CVE-2007-1330 (Comodo Firewall Pro (CFP) (formerly Comodo Personal Firewall) 2.4.18.184 and earlier allows local users to bypass driver protections on the HKLM\SYSTEM\Software\Comodo\Personal Firewall registry key by guessing the name of a named pipe under \Device\NamedPipe\OLE and attempting to open it multiple times.)

Original document

Matousec - Transparent security Research, Comodo Bypassing settings protection using magic pipe Vulnerability (02.03.2007)

Files:		Comodo firewall Testing program for Bypassing settings protection using magic pipe
Discuss:		Read or add your comments to this news (0 comments)