What is the severity of CVE-2008-1736?

CVE-2008-1736 has a severity rating that indicates it can cause a denial of service, resulting in system crashes.

How do I fix CVE-2008-1736?

To resolve CVE-2008-1736, it is recommended to upgrade to Comodo Firewall Pro version 3.0 or later.

Who is affected by CVE-2008-1736?

CVE-2008-1736 affects local users of Comodo Firewall Pro versions prior to 3.0.

What causes the vulnerability in CVE-2008-1736?

CVE-2008-1736 is caused by improper validation of parameters to hooked System Service Descriptor Table functions.

What actions should be taken if CVE-2008-1736 is exploited?

If CVE-2008-1736 is exploited, immediate system updates should be applied, and careful monitoring for unusual activity should be conducted.

Vulnerability/
CVE-2008-1736

high

7.2

CWE

NVD-CWE-Other

29/4/2008

7/8/2024

CVE-2008-1736

First published: Tue Apr 29 2008(Updated: )

Comodo Firewall Pro before 3.0 does not properly validate certain parameters to hooked System Service Descriptor Table (SSDT) functions, which allows local users to cause a denial of service (system crash) via (1) a crafted OBJECT_ATTRIBUTES structure in a call to the NtDeleteFile function, which leads to improper validation of a ZwQueryObject result; and unspecified calls to the (2) NtCreateFile and (3) NtSetThreadContext functions, different vectors than CVE-2007-0709.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Comodo Firewall Pro	<=2.4

Remedy

http://www.securityfocus.com/bid/28742

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2008-1736?
CVE-2008-1736 has a severity rating that indicates it can cause a denial of service, resulting in system crashes.
How do I fix CVE-2008-1736?
To resolve CVE-2008-1736, it is recommended to upgrade to Comodo Firewall Pro version 3.0 or later.
Who is affected by CVE-2008-1736?
CVE-2008-1736 affects local users of Comodo Firewall Pro versions prior to 3.0.
What causes the vulnerability in CVE-2008-1736?
CVE-2008-1736 is caused by improper validation of parameters to hooked System Service Descriptor Table functions.
What actions should be taken if CVE-2008-1736 is exploited?
If CVE-2008-1736 is exploited, immediate system updates should be applied, and careful monitoring for unusual activity should be conducted.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/references
agent/remedy
agent/last-modified-date
agent/author
agent/severity
agent/weakness
agent/description
agent/event
agent/first-publish-date
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/comodo
canonical/comodo firewall pro
version/comodo firewall pro/2.4

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.