CVE-2006-6620

Name of the Vulnerable Software and Affected Versions Comodo Personal Firewall version 2.3.6.81

Description The issue allows local users to bypass controls on a process by spoofing certain fields in the Process Environment Block (PEB), specifically the ImagePathName, CommandLine, and WindowTitle fields. This could potentially enable unauthorized actions.

Recommendations For Comodo Personal Firewall version 2.3.6.81, consider updating to a newer version that addresses this issue, as the current version relies on the PEB to identify processes, making it vulnerable to spoofing. At the moment, there is no information about a newer version that contains a fix for this vulnerability.