EIP-2026-116983

PRE-CVE

Comodo Firewall 2.3/2.4 - Flawed Component Control Cryptographic Hash

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-116983. PoCs published by Matousec Transparent security.

AI-analyzed exploit summary The exploit describes a design flaw in Comodo Firewall's cryptographic hashing function, which uses CRC instead of a cryptographic hash for module checksums. This allows attackers to bypass component controls by inserting malicious components with matching CRCs.

Description

Comodo Firewall 2.3/2.4 - Flawed Component Control Cryptographic Hash

Exploits (1)

exploitdb WRITEUP VERIFIED

by Matousec Transparent security · textlocalwindows

https://www.exploit-db.com/exploits/29603

View Code ZIP pw:eip

The exploit describes a design flaw in Comodo Firewall's cryptographic hashing function, which uses CRC instead of a cryptographic hash for module checksums. This allows attackers to bypass component controls by inserting malicious components with matching CRCs.

Classification

Writeup 90%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Theoretical

Target: Comodo Firewall Pro 2.4.17.183, 2.4.16.174, and Comodo Personal Firewall 2.3.6.81

No auth needed

Prerequisites: Access to the target system to insert malicious components

MITRE ATT&CK

T1553.004 - Install Root Certificate

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026