CVE-2019-3971

Name of the Vulnerable Software and Affected Versions Comodo Antivirus versions up to 12.0.0.6810

Description The issue is a local Denial of Service that affects CmdVirth.exe via its LPC port "cmdvrtLPCServerPort". A low-privileged local process can connect to this port and send an LPC DATAGRAM, triggering an Access Violation due to hardcoded NULLs used for the Source parameter in a memcpy operation. This results in CmdVirth.exe and its child svchost.exe instances terminating.

Recommendations For Comodo Antivirus versions up to 12.0.0.6810, as a temporary workaround, consider restricting access to the "cmdvrtLPCServerPort" LPC port to minimize the risk of exploitation.