A security researcher at Tenable, David Wells uncovered five vulnerabilities in Comodo Antivirus and Comodo Antivirus Advanced.
What are the vulnerabilities?
Out of the five vulnerabilities, four flaws were detected in version 220.127.116.1110 and one flaw in version 18.104.22.16882, which is a Denial-of-Service (DoS) bug.
“A low-privileged process however, can crash CmdVirth.exe to decrease the port's connection count and process hollow a CmdVirth.exe copy with malicious code to obtain a port handle. Once this occurs, a specially crafted message can be sent to cmdServicePort using ‘filtersendmessage’ API, which triggers an out-of-bounds write if lpOutBuffer parameter is near the end of buffer bounds,” Tenable said.
Patch not available
The researcher has reported his findings to Comodo in mid-April, but the vulnerabilities have not been fixed yet.
Comodo is yet to officially comment on the matter. Cyware will update this article if the company releases a statement.