CVE-2014-9633

COMODO Backup <4.4.1.23 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-9633. PoCs published by Parvez Anwar.

AI-analyzed exploit summary This exploit leverages a null pointer dereference in Comodo Backup's bdisk.sys driver to achieve privilege escalation by overwriting the token of the current process with that of the SYSTEM process. It includes shellcode for both Windows XP and Windows 7.

Description

The bdisk.sys driver in COMODO Backup before 4.4.1.23 allows remote attackers to gain privileges via a crafted device handle, which triggers a NULL pointer dereference.

Exploits (1)

exploitdb WORKING POC

by Parvez Anwar · clocalwindows

https://www.exploit-db.com/exploits/35905

View Code ZIP pw:eip

This exploit leverages a null pointer dereference in Comodo Backup's bdisk.sys driver to achieve privilege escalation by overwriting the token of the current process with that of the SYSTEM process. It includes shellcode for both Windows XP and Windows 7.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Comodo Backup 4.4.0.0 with bdisk.sys driver 1.0.0.957

No auth needed

Prerequisites: Access to a vulnerable version of Comodo Backup on Windows XP SP3 or Windows 7 SP1 (32-bit)

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1134 - Access Token Manipulation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/35905

Exploit x_refsource_misc

http://packetstormsecurity.com/files/130094/Comodo-Backup-4.4.0.0-NULL-Pointer-Dereference.html

Various Sources x_refsource_confirm

http://forums.comodo.com/news-announcements-feedback-cb/comodo-backup-44123-released-t107293.0.html

Scores

EPSS 0.0721

EPSS Percentile 91.8%

Details

CWE

CWE-264

Status published

Products (1)

comodo/backup < 4.4.1

Published Feb 03, 2015

Tracked Since Feb 18, 2026