ID CVE-2006-6622
Summary Soft4Ever Look 'n' Stop (LnS) 2.05p2 before 20061215 relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product's controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB.
References
Vulnerable Configurations
  • cpe:2.3:a:avg:antivirus_plus_firewall:7.5.431:*:*:*:*:*:*:*
    cpe:2.3:a:avg:antivirus_plus_firewall:7.5.431:*:*:*:*:*:*:*
  • cpe:2.3:a:comodo:comodo_personal_firewall:2.3.6.81:*:*:*:*:*:*:*
    cpe:2.3:a:comodo:comodo_personal_firewall:2.3.6.81:*:*:*:*:*:*:*
  • cpe:2.3:a:filseclab:personal_firewall:3.0.8686:*:*:*:*:*:*:*
    cpe:2.3:a:filseclab:personal_firewall:3.0.8686:*:*:*:*:*:*:*
  • cpe:2.3:a:infoprocess:antihook:3.0.23:*:*:*:*:*:*:*
    cpe:2.3:a:infoprocess:antihook:3.0.23:*:*:*:*:*:*:*
  • cpe:2.3:a:soft4ever:look_n_stop:2.05p2:*:*:*:*:*:*:*
    cpe:2.3:a:soft4ever:look_n_stop:2.05p2:*:*:*:*:*:*:*
  • cpe:2.3:a:symantec:sygate_personal_firewall:5.6.2808:*:*:*:*:*:*:*
    cpe:2.3:a:symantec:sygate_personal_firewall:5.6.2808:*:*:*:*:*:*:*
CVSS
Base: 7.2 (as of 17-10-2018 - 21:49)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:L/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 21615
bugtraq 20061215 Bypassing process identification of several personal firewalls and HIPS
confirm http://www.wilderssecurity.com/showthread.php?t=158155
misc
Last major update 17-10-2018 - 21:49
Published 18-12-2006 - 11:28
Last modified 17-10-2018 - 21:49
Back to Top