HIGH🇵🇱 Wersja polska

CVE-2019-18215

CVSS 7.8v3.1pub. 2019-11-18upd. 2024-11-21

An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially unprotected product directory. This DLL is then loaded into a high-privileged service before the binary signature validation logic is loaded, and might bypass some of the self-defense mechanisms.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Comodo Internet Security

    APP
    Comodo
    < 12.1.0.6914
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2011-5123HIGH10.0ten sam produkt

The Antivirus component in Comodo Internet Security before 5.3.175888.1227 does not check whether X.509 certif...

CVE-2011-5121HIGH10.0ten sam produkt

The Antivirus component in Comodo Internet Security before 5.3.175888.1227 does not properly check whether uns...

CVE-2010-5185HIGH10.0ten sam produkt

The Antivirus component in Comodo Internet Security before 5.3.174622.1216 does not check whether X.509 certif...

CVE-2009-5125MEDIUM4.3ten sam produkt

Comodo Internet Security before 3.9.95478.509 allows remote attackers to bypass malware detection in an RAR ar...

CVE-2009-5127MEDIUM4.3ten sam produkt

The Antivirus component in Comodo Internet Security before 3.8.64739.471 allows remote attackers to cause a de...