Check CVE Id
Check CWE Id
The Antivirus component in Comodo Internet Security before 3.8.64739.471 allows remote attackers to cause a denial of service (application crash) via a crafted file.
Comodo internet security
CVSS Base Score
An issue was discovered in signmgr.dll 184.108.40.2069 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially unprotected product directory. This DLL is then load...
A use-after-free flaw in the sandbox container implemented in cmdguard.sys in Comodo Antivirus 220.127.116.1170 can be triggered due to a race condition when handling IRP_MJ_CLEANUP requests in the minifilter for directory change notifications. This allow...
Comodo Antivirus through 18.104.22.16870, Comodo Firewall through 22.214.171.12470, and Comodo Internet Security Premium through 126.96.36.19970, with the Comodo Container feature, are vulnerable to Sandbox Escape.
Comodo Antivirus versions 188.8.131.5282 and below are vulnerable to Denial of Service affecting CmdGuard.sys via its filter port "cmdServicePort". A low privileged process can crash CmdVirth.exe to decrease the port's connection count followed by proce...
Comodo Antivirus versions 184.108.40.20610 and below are vulnerable to Denial of Service affecting CmdAgent.exe via an unprotected section object "<GUID>_CisSharedMemBuff". This section object is exposed by CmdAgent and contains a SharedMemoryDictionary o...
Comodo Antivirus versions up to 220.127.116.1110 are vulnerable to a local Denial of Service affecting CmdVirth.exe via its LPC port "cmdvrtLPCServerPort". A low privileged local process can connect to this port and send an LPC_DATAGRAM, which triggers an...
Comodo Antivirus versions up to 18.104.22.16810 are vulnerable to Arbitrary File Write due to Cavwp.exe handling of Comodo's Antivirus database. Cavwp.exe loads Comodo antivirus definition database in unsecured global section objects, allowing a local lo...
Comodo Antivirus versions up to 22.214.171.12410 are vulnerable to Local Privilege Escalation due to CmdAgent's handling of COM clients. A local process can bypass the signature check enforced by CmdAgent via process hollowing which can then allow the pro...
Back to Top