Race Condition Vulnerability in Comodo Internet Security on Windows XP
CVE-2010-5157

Currently unrated

Key Information:

Vendor: Comodo
Status: Comodo Internet Security
Vendor: CVE Published:; 25 August 2012

What is CVE-2010-5157?

A race condition exists in Comodo Internet Security prior to version 4.1.149672.916, which affects Windows XP. This flaw allows local users to bypass kernel-mode hook handlers, enabling them to execute potentially malicious code that would typically be mitigated by the security mechanisms in place. This occurs during the execution of hook handlers, leveraging specific user-space memory alterations—an attack method often referred to as an argument-switch or KHOBE attack.

References

http://archives.neohapsis.com/archives/bugtraq/2010-05/00...

mailing-listx_refsource_BUGTRAQ

http://countermeasures.trendmicro.eu/you-just-cant-trust-...

x_refsource_MISC

http://www.securityfocus.com/bid/39924

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 25, 2012