CVE-2019-18215

Опубликовано: 18 нояб. 2019

Источник: nvd

CVSS3: 7.8

CVSS2: 4.4

EPSS Низкий

Описание

An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially unprotected product directory. This DLL is then loaded into a high-privileged service before the binary signature validation logic is loaded, and might bypass some of the self-defense mechanisms.

Ссылки

https://forums.comodo.com/news-announcements-feedback-cis/comodo-internet-security-2019-v12106914-released-t124993.0.html
Release Notes
Vendor Advisory
https://safebreach.com/Post/Comodo-Internet-Security-DLL-Preloading-and-Potential-Abuses-CVE-2019-18215
Exploit
Third Party Advisory
https://safebreach.com/blog
Third Party Advisory
https://forums.comodo.com/news-announcements-feedback-cis/comodo-internet-security-2019-v12106914-released-t124993.0.html
Release Notes
Vendor Advisory
https://safebreach.com/Post/Comodo-Internet-Security-DLL-Preloading-and-Potential-Abuses-CVE-2019-18215
Exploit
Third Party Advisory
https://safebreach.com/blog
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:comodo:comodo_internet_security:*:*:*:*:*:*:*:*

Версия до 12.1.0.6914 (исключая)

EPSS

Процентиль: 22%

0.00073

Низкий

7.8 High

CVSS3

4.4 Medium

CVSS2

Дефекты

CWE-427

Связанные уязвимости

GHSA-6ccg-r3f9-7j87

github

больше 3 лет назад