CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2007-1330

MEDIUM
4.4
CVSS Severity Score
EPSS Score0.0840%
EPSS Percentile33.68th
Published2007年3月7日
Last Modified2026年4月23日

Vulnerability Description

Comodo Firewall Pro (CFP) (formerly Comodo Personal Firewall) 2.4.18.184 and earlier allows local users to bypass driver protections on the HKLM\SYSTEM\Software\Comodo\Personal Firewall registry key by guessing the name of a named pipe under \Device\NamedPipe\OLE and attempting to open it multiple times.

Affected Platforms (CPE)

📦
Comodo

Comodo Firewall Pro

= 2.4.16.174
📦
Comodo

Comodo Firewall Pro

= 2.4.17.183
📦
Comodo

Comodo Firewall Pro

= 2.4.18.184

References & Advisories

🔗 http://osvdb.org/34957
🔗 http://securityreason.com/securityalert/2388
🔗 http://www.matousec.com/info/advisories/Comodo-Bypassing-settings-protection-using-magic-pipe.php
🔗 http://www.securityfocus.com/archive/1/461635/100/0/threaded
🔗 http://www.securityfocus.com/bid/22775
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/32771
🔗 http://osvdb.org/34957
🔗 http://securityreason.com/securityalert/2388

相關漏洞威脅

CVE-2007-07087.2

cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) before 2.4.16.174 does not validate arguments that originate...

CVE-2007-07097.2

cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) 2.4.16.174 and earlier does not validate arguments that orig...

CVE-2007-27297.2

Comodo Firewall Pro 2.4.18.184 and Comodo Personal Firewall 2.3.6.81, and probably older Comodo Firewall versions, do not properly...

CVE-2008-17367.2

Comodo Firewall Pro before 3.0 does not properly validate certain parameters to hooked System Service Descriptor Table (SSDT) func...