CVE-2007-0709

Name of the Vulnerable Software and Affected Versions Comodo Firewall Pro versions 2.4.16.174 and earlier

Description The issue concerns the cmdmon.sys component in Comodo Firewall Pro, which fails to validate arguments from user mode for several hooked SSDT functions, including NtCreateSection, NtOpenProcess, NtOpenSection, NtOpenThread, and NtSetValueKey. This allows local users to potentially cause a denial of service, leading to a system crash, and possibly gain privileges by providing invalid arguments.

Recommendations For Comodo Firewall Pro versions 2.4.16.174 and earlier, update to a version later than 2.4.16.174 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.