CVE-2010-5157

Name of the Vulnerable Software and Affected Versions Comodo Internet Security versions prior to 4.1.149672.916

Description A race condition exists that allows local users to bypass kernel-mode hook handlers and execute dangerous code. This is achieved through certain user-space memory changes during hook-handler execution. The issue can be exploited via an argument-switch attack or a KHOBE attack, which would otherwise be blocked by a handler but not by signature-based malware detection.

Recommendations For Comodo Internet Security versions prior to 4.1.149672.916, update to version 4.1.149672.916 or later to resolve the issue.