Main Vulnerability Database Vulnerabilities #VU43665

Input validation error in Comodo Internet Security - CVE-2009-5125

Published: August 26, 2012 / Updated: August 11, 2020

Vulnerability identifier: #VU43665

CSH Severity: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2009-5125

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Comodo Internet Security

Software vendor:
Comodo Group

Description

The vulnerability allows a remote non-authenticated attacker to manipulate data.

Comodo Internet Security before 3.9.95478.509 allows remote attackers to bypass malware detection in an RAR archive via an unspecified manipulation of the archive file format.

Remediation

Install update from vendor's website.

External links

http://blog.zoller.lu/2009/04/comodo-antivirus-evasionbypass.html
http://personalfirewall.comodo.com/release_notes.html
http://www.securityfocus.com/archive/1/503018
http://www.securityfocus.com/bid/34737

Input validation error in Comodo Internet Security - CVE-2009-5125

Description

Remediation

External links

Please verify you're human