CVE-2007-0709

NONECVSS 0.0

0.0

cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) 2.4.16.174 and earlier does not validate arguments that originate in user mode for the (1) NtCreateSection, (2) NtOpenProcess, (3) NtOpenSection, (4) NtOpenThread, and (5) NtSetValueKey hooked SSDT functions, which allows local users to cause a denial of service (system crash) and possibly gain privileges via invalid arguments.

🔗 References (10)

cve@mitrehttp://securitytracker.com/id?1017580
cve@mitrehttp://www.matousec.com/info/advisories/Comodo-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.php
cve@mitrehttp://www.securityfocus.com/archive/1/458773/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/22357
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/32059
af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1017580
af854a3a-2127-422b-91ae-364da2661108http://www.matousec.com/info/advisories/Comodo-Multiple-insufficient-argument-validation-of-hooked-SSDT-functions.php
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/458773/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/22357
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/32059

Is Your Infrastructure Affected by CVE-2007-0709?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-0709

📅 Published

🔄 Last Modified

🔗 References (10)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-0709?