Denial of Service Vulnerability in Comodo Internet Security on Windows 7 x64
CVE-2012-2273

Currently unrated

Key Information:

Vendor: Comodo
Status: Comodo Internet Security
Vendor: CVE Published:; 20 April 2012

What is CVE-2012-2273?

A vulnerability exists in Comodo Internet Security prior to version 5.10.228257.2253 on Windows 7 x64 that allows local users to exploit a crafted 32-bit Portable Executable (PE) file. By manipulating the kernel ImageBase value in the crafted file, an attacker can induce a system crash, leading to a denial of service condition. Users are advised to upgrade to the latest version to mitigate this risk.

References

http://www.securitytracker.com/id?1026982

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/53163

vdb-entryx_refsource_BID

http://www.comodo.com/home/download/release-notes.php?p=a...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 20, 2012
Vulnerability Reserved
Apr 18, 2012