GCVE - cpe:2.3:a:comodo:comodo_personal_firewall:2.3.6.81:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:comodo:comodo_personal_firewall:2.3.6.81:*:*:*:*:*:*:*

part: a version: 2.3.6.81 update: *

Vendor	Comodo (`ae0f5a94-22c5-54dd-8ff5-a3476482174a`)
Product	Comodo Personal Firewall (`0655e694-ac01-589b-8430-5748ba254731`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2007-2730`	vulnerable	2026-06-03 14:28:09.258619	Details available Check Point ZoneAlarm Pro before 6.5.737.000 does not properly test for equivalence of process identifiers for certain Microsoft Windows API functions in the NT kernel 5.0 and greater, which allows local users to call these functions, and bypass firewall rules or gain privileges, via a modified identifier that is one, two, or three greater than the canonical identifier. Published: 2007-05-16T22:00:00.000Z Updated: 2024-08-07T13:49:57.303Z Open on db.gcve.eu Reference links http://securityreason.com/securityalert/2714 http://www.securityfocus.com/archive/1/468643/100/0/threaded http://osvdb.org/37383 http://www.matousec.com/info/advisories/Bypassing-PWF-HIPS-open-process-control-with-uncommon-identifier.php	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2007-2729`	vulnerable	2026-06-03 14:28:09.258046	Details available Comodo Firewall Pro 2.4.18.184 and Comodo Personal Firewall 2.3.6.81, and probably older Comodo Firewall versions, do not properly test for equivalence of process identifiers for certain Microsoft Windows API functions in the NT kernel 5.0 and greater, which allows local users to call these functions, and bypass firewall rules or gain privileges, via a modified identifier that is one, two, or three greater than the canonical identifier. Published: 2007-05-16T22:00:00.000Z Updated: 2024-08-07T13:49:57.408Z Open on db.gcve.eu Reference links http://securityreason.com/securityalert/2714 http://www.securityfocus.com/archive/1/468643/100/0/threaded http://www.matousec.com/info/advisories/Bypassing-PWF-HIPS-open-process-control-with-uncommon-identifier.php http://osvdb.org/37375	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-6623`	vulnerable	2026-06-03 14:27:53.729228	Details available Sygate Personal Firewall 5.6.2808 relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product's controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB. Published: 2006-12-18T11:00:00.000Z Updated: 2024-08-07T20:33:59.983Z Open on db.gcve.eu Reference links http://www.matousec.com/info/advisories/Bypassing-process-identification-serveral-personal-firewalls-HIPS.php http://www.securityfocus.com/archive/1/454522/100/0/threaded http://www.securityfocus.com/bid/21615 http://www.matousec.com/downloads/windows-personal-firewall-analysis/ex-coat.zip	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-6622`	vulnerable	2026-06-03 14:27:53.728829	Details available Soft4Ever Look 'n' Stop (LnS) 2.05p2 before 20061215 relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product's controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB. Published: 2006-12-18T11:00:00.000Z Updated: 2024-08-07T20:34:00.121Z Open on db.gcve.eu Reference links http://www.matousec.com/info/advisories/Bypassing-process-identification-serveral-personal-firewalls-HIPS.php http://www.securityfocus.com/archive/1/454522/100/0/threaded http://www.securityfocus.com/bid/21615 http://www.wilderssecurity.com/showthread.php?t=158155 http://www.matousec.com/downloads/windows-personal-firewall-analysis/ex-coat.zip	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-6621`	vulnerable	2026-06-03 14:27:53.728417	Details available Filseclab Personal Firewall 3.0.0.8686 relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product's controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB. Published: 2006-12-18T11:00:00.000Z Updated: 2024-08-07T20:33:59.816Z Open on db.gcve.eu Reference links http://www.matousec.com/info/advisories/Bypassing-process-identification-serveral-personal-firewalls-HIPS.php http://www.securityfocus.com/archive/1/454522/100/0/threaded http://www.securityfocus.com/bid/21615 http://www.matousec.com/downloads/windows-personal-firewall-analysis/ex-coat.zip	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-6620`	vulnerable	2026-06-03 14:27:53.728019	Details available Comodo Personal Firewall 2.3.6.81 relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product's controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB. Published: 2006-12-18T11:00:00.000Z Updated: 2024-08-07T20:33:59.974Z Open on db.gcve.eu Reference links http://www.matousec.com/info/advisories/Bypassing-process-identification-serveral-personal-firewalls-HIPS.php http://www.securityfocus.com/archive/1/454522/100/0/threaded http://www.securityfocus.com/bid/21615 http://www.matousec.com/downloads/windows-personal-firewall-analysis/ex-coat.zip	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-6619`	vulnerable	2026-06-03 14:27:53.727600	Details available AVG Anti-Virus plus Firewall 7.5.431 relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product's controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB. Published: 2006-12-18T11:00:00.000Z Updated: 2024-08-07T20:33:59.569Z Open on db.gcve.eu Reference links http://www.matousec.com/info/advisories/Bypassing-process-identification-serveral-personal-firewalls-HIPS.php http://www.securityfocus.com/archive/1/454522/100/0/threaded http://www.securityfocus.com/bid/21615 http://www.matousec.com/downloads/windows-personal-firewall-analysis/ex-coat.zip	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-6618`	vulnerable	2026-06-03 14:27:53.721128	Details available AntiHook 3.0.0.23 - Desktop relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product's controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB. Published: 2006-12-18T11:00:00.000Z Updated: 2024-08-07T20:33:59.809Z Open on db.gcve.eu Reference links http://www.matousec.com/info/advisories/Bypassing-process-identification-serveral-personal-firewalls-HIPS.php http://www.securityfocus.com/archive/1/454522/100/0/threaded http://www.securityfocus.com/bid/21615 http://www.matousec.com/downloads/windows-personal-firewall-analysis/ex-coat.zip	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Comodo Personal Firewall

PURL mappings

Vulnerability references

Contribute