What is the severity of CVE-2006-6619?

CVE-2006-6619 is considered a high severity vulnerability due to its potential to bypass security controls.

How do I fix CVE-2006-6619?

To fix CVE-2006-6619, update to a newer version of AVG Anti-Virus plus Firewall that addresses this vulnerability.

What systems are affected by CVE-2006-6619?

CVE-2006-6619 affects AVG Anti-Virus plus Firewall version 7.5.431 and several other personal firewall products.

What types of attacks can CVE-2006-6619 facilitate?

CVE-2006-6619 can facilitate local privilege escalation and allow attackers to bypass process controls.

Who can exploit CVE-2006-6619?

CVE-2006-6619 can be exploited by local users with the ability to spoof environment block fields.

Vulnerability/
CVE-2006-6619

high

7.2

CWE

NVD-CWE-Other

18/12/2006

17/10/2018

CVE-2006-6619

First published: Mon Dec 18 2006(Updated: )

AVG Anti-Virus plus Firewall 7.5.431 relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product's controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
AVG Antivirus Plus Firewall	=7.5.431
Comodo Firewall Pro	=2.3.6.81
Filseclab Personal Firewall	=3.0.8686
Infoprocess Antihook	=3.0.23
Look 'n' Stop Firewall	=2.05p2
Sygate Technologies	=5.6.2808

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-6619?
CVE-2006-6619 is considered a high severity vulnerability due to its potential to bypass security controls.
How do I fix CVE-2006-6619?
To fix CVE-2006-6619, update to a newer version of AVG Anti-Virus plus Firewall that addresses this vulnerability.
What systems are affected by CVE-2006-6619?
CVE-2006-6619 affects AVG Anti-Virus plus Firewall version 7.5.431 and several other personal firewall products.
What types of attacks can CVE-2006-6619 facilitate?
CVE-2006-6619 can facilitate local privilege escalation and allow attackers to bypass process controls.
Who can exploit CVE-2006-6619?
CVE-2006-6619 can be exploited by local users with the ability to spoof environment block fields.

agent/references
agent/type
agent/first-publish-date
agent/last-modified-date
agent/severity
agent/weakness
agent/author
agent/description
agent/event
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/soft4ever
product/look n stop
canonical/soft4ever look n stop
vendor/avg
product/antivirus plus firewall
canonical/avg antivirus plus firewall
vendor/comodo
product/comodo personal firewall
canonical/comodo comodo personal firewall
vendor/infoprocess
product/antihook
canonical/infoprocess antihook
vendor/symantec
product/sygate personal firewall
canonical/symantec sygate personal firewall
vendor/filseclab
product/personal firewall
canonical/filseclab personal firewall
version/avg antivirus plus firewall/7.5.431
canonical/comodo firewall pro
version/comodo firewall pro/2.3.6.81
version/filseclab personal firewall/3.0.8686
version/infoprocess antihook/3.0.23
canonical/look 'n' stop firewall
version/look 'n' stop firewall/2.05p2
canonical/sygate technologies
version/sygate technologies/5.6.2808

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.