Submeter #603713: Comodo Security Solutions Comodo Internet Security Premium 12.3.4.8162 Improper Validation of Integrity Check Valueinformação

TítuloComodo Security Solutions Comodo Internet Security Premium 12.3.4.8162 Improper Validation of Integrity Check Value
DescriçãoComodo update server uses manifest file cis_update_x64.xml to define metadata of binaries to update. Comodo IS doesn't verify authenticity and integrity of this manifest file. Threat actor can deliver malicious script and executes to gain remote control as SYSTEM privilege.
Fonte⚠️ https://drive.google.com/file/d/1qnWarYsTSc5_sV6o8ULv0LBvGfKKXPxn/view?usp=sharing
Utilizador
 FPT IS Security (UID 72751)
Submissão25/06/2025 10h42 (há 10 meses)
Moderação05/07/2025 17h36 (10 days later)
EstadoAceite
Entrada VulDB315010 [Comodo Internet Security Premium 12.3.4.8162 Manifest File cis_update_x64.xml Execução remota de código]
Pontos18

VoltarVisão GeralPróximo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!