NVD

Id
65164  
Name
CVE-2006-6620  
Description
Comodo Personal Firewall 2.3.6.81 relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product"s controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2016-12-20  
Published
2006-12-18  
Modified Date
2008-09-05  
Seq
2006-6620  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
340207 65164 CVE-2006-6620 http://www.matousec.com/downloads/windows-personal-firewall-analysis/ex-coat.zip  View
340208 65164 CVE-2006-6620 http://www.matousec.com/info/advisories/Bypassing-process-identification-serveral-personal-firewalls-HIPS.php  View
340209 65164 CVE-2006-6620 20061215 Bypassing process identification of several personal firewalls and HIPS  View
340210 65164 CVE-2006-6620 21615  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
59504 JVNDB-2006-001770 Comodo Personal Firewall におけるプロセス上の製品コントロールを回避される脆弱性 Comodo Personal Firewall は、プロセスの識別を Process Environment Block (PEB) に依存しているため、プロセス上の製品コントロールを回避される脆弱性が存在します。 CVE-2006-6620 22722 CVE-2006-6620 65164 7.2 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-001770.html 2006-12-18 2012-06-26 View