CVE-2007-0708

Comodo Firewall Pro <2.4.16.174 - DoS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-0708. PoCs published by Matousec Transparent security.

AI-analyzed exploit summary This exploit demonstrates a denial-of-service vulnerability in Comodo Firewall by calling hooked SSDT functions with invalid arguments, causing system crashes. It targets multiple functions like NtConnectPort, NtCreatePort, and others by passing malformed pointers.

Description

cmdmon.sys in Comodo Firewall Pro (formerly Comodo Personal Firewall) before 2.4.16.174 does not validate arguments that originate in user mode for the (1) NtConnectPort and (2) NtCreatePort hooked SSDT functions, which allows local users to cause a denial of service (system crash) and possibly gain privileges via invalid arguments.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Matousec Transparent security · cdoswindows

https://www.exploit-db.com/exploits/29558

View Code ZIP pw:eip

This exploit demonstrates a denial-of-service vulnerability in Comodo Firewall by calling hooked SSDT functions with invalid arguments, causing system crashes. It targets multiple functions like NtConnectPort, NtCreatePort, and others by passing malformed pointers.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Comodo Firewall Pro 2.4.16.174 and Comodo Personal Firewall 2.3.6.81

No auth needed

Prerequisites: Access to a system running vulnerable Comodo Firewall versions

MITRE ATT&CK