7.2
CVE-2006-6619
- EPSS 0.94%
- Veröffentlicht 18.12.2006 11:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:28
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
AVG Anti-Virus plus Firewall 7.5.431 relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product's controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Avg ≫ Antivirus Plus Firewall Version7.5.431
Comodo ≫ Comodo Personal Firewall Version2.3.6.81
Filseclab ≫ Personal Firewall Version3.0.8686
Infoprocess ≫ Antihook Version3.0.23
Soft4ever ≫ Look N Stop Version2.05p2
Symantec ≫ Sygate Personal Firewall Version5.6.2808
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.94% | 0.561 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
http://www.matousec.com/downloads/windows-personal-firewall-analysis/ex-coat.zip
http://www.matousec.com/info/advisories/Bypassing-process-identification-serveral-personal-firewalls-HIPS.php
http://www.securityfocus.com/archive/1/454522/100/0/threaded
http://www.securityfocus.com/bid/21615