What is the severity of CVE-2007-2729?

The severity of CVE-2007-2729 is considered medium, as it allows local users to exploit permissions in Comodo Firewall.

How do I fix CVE-2007-2729?

To fix CVE-2007-2729, ensure that you update to the latest version of Comodo Firewall that addresses this vulnerability.

Which versions of Comodo Firewall are affected by CVE-2007-2729?

CVE-2007-2729 affects Comodo Firewall Pro version 2.4.18.184 and Comodo Personal Firewall version 2.3.6.81, among possibly older versions.

What type of vulnerability is CVE-2007-2729?

CVE-2007-2729 is a local privilege escalation vulnerability due to improper testing of process identifiers.

Can CVE-2007-2729 be exploited remotely?

CVE-2007-2729 cannot be exploited remotely as it requires local access to the affected system.

Vulnerability/
CVE-2007-2729

high

7.2

CWE

NVD-CWE-Other

16/5/2007

16/10/2018

CVE-2007-2729

First published: Wed May 16 2007(Updated: )

Comodo Firewall Pro 2.4.18.184 and Comodo Personal Firewall 2.3.6.81, and probably older Comodo Firewall versions, do not properly test for equivalence of process identifiers for certain Microsoft Windows API functions in the NT kernel 5.0 and greater, which allows local users to call these functions, and bypass firewall rules or gain privileges, via a modified identifier that is one, two, or three greater than the canonical identifier.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Comodo Firewall Pro	=2.3.6.81
Comodo Firewall Pro	=2.4.18.184

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2007-2729?
The severity of CVE-2007-2729 is considered medium, as it allows local users to exploit permissions in Comodo Firewall.
How do I fix CVE-2007-2729?
To fix CVE-2007-2729, ensure that you update to the latest version of Comodo Firewall that addresses this vulnerability.
Which versions of Comodo Firewall are affected by CVE-2007-2729?
CVE-2007-2729 affects Comodo Firewall Pro version 2.4.18.184 and Comodo Personal Firewall version 2.3.6.81, among possibly older versions.
What type of vulnerability is CVE-2007-2729?
CVE-2007-2729 is a local privilege escalation vulnerability due to improper testing of process identifiers.
Can CVE-2007-2729 be exploited remotely?
CVE-2007-2729 cannot be exploited remotely as it requires local access to the affected system.

agent/references
agent/weakness
agent/severity
agent/author
agent/description
agent/type
agent/event
agent/first-publish-date
agent/softwarecombine
agent/last-modified-date
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/comodo
canonical/comodo firewall pro
version/comodo firewall pro/2.3.6.81
version/comodo firewall pro/2.4.18.184

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.