CVE-2009-5123

The Antivirus component in Comodo Internet Security before 3.11.108364.552 allows remote attackers to cause a denial of service (memory consumption) via a crafted compressed file.

CVSS v2.0 4.3 MEDIUM

4.3^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:N/I:N/A:P

Exploitability : 8.6 / Impact : 2.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://personalfirewall.comodo.com/release_notes.html

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:comodo:comodo_internet_security::::::::
	cpe:2.3:a:comodo:comodo_internet_security:3.0.14.276:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.0.15.277:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.0.16.295:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.0.17.304:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.0.18.309:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.0.19.318:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.0.20.320:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.0.22.349:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.0.23.364:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.0.24.368:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.0.25.378:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.5.53896.424:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.5.54375.427:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.5.55810.432:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.5.57173.439:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.8.64263.468:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.8.64739.471:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.8.65951.477:::::::*
	cpe:2.3:a:comodo:comodo_internet_security:3.9.95478.509:::::::*

History

No history.

Information

Published : 2012-08-26 03:17

Updated : 2024-02-04 18:16

NVD link : CVE-2009-5123

Mitre link : CVE-2009-5123

CVE.ORG link : CVE-2009-5123

JSON object : View

Products Affected

comodo

comodo_internet_security

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

{"id": "CVE-2009-5123", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-08-26T03:17:43.340", "references": [{"url": "http://personalfirewall.comodo.com/release_notes.html", "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "The Antivirus component in Comodo Internet Security before 3.11.108364.552 allows remote attackers to cause a denial of service (memory consumption) via a crafted compressed file."}, {"lang": "es", "value": "El componente Antivirus en Comodo Internet Security anterior a v3.11.108364.552 permite a atacantes remotos causar una denegaci\u00f3n de servicio (consumo de memoria) a trav\u00e9s de un fichero comprimido manipulado."}], "lastModified": "2012-09-03T04:00:00.000", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:comodo:comodo_internet_security:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46541CB0-CF35-4D11-B1AD-3887C6ED7966", "versionEndIncluding": "3.10.102363.531"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.0.14.276:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "68D4B36C-D9C8-4127-B5F0-B0463C6CCEA8"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.0.15.277:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9D14032C-5F6F-46BF-9B75-90864B257F90"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.0.16.295:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6172BBD4-5E63-45AE-AE95-1D52ABDD3D16"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.0.17.304:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "789A3259-A177-4126-BABD-C97E358E5E3A"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.0.18.309:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3FEC54C9-8640-40AA-AC6B-EF91075E926E"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.0.19.318:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "212EEC48-A672-4DC6-81A9-794F68934E6F"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.0.20.320:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "203DDD77-5DA2-43A5-825F-419F906284B4"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.0.22.349:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25C406CC-6734-467C-B776-A312B898BC2B"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.0.23.364:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F5DE2BB5-B28D-4121-ABA3-2A38CEF69F92"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.0.24.368:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "53E5C7F8-ACE5-44BD-9254-863E33878B10"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.0.25.378:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9EACED07-60E9-4F8F-A601-15297345B4E2"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.5.53896.424:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7573FD23-52AF-4528-BF6D-3186180EA2A1"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.5.54375.427:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "824CC29D-320B-417F-B16B-C5512A5A67F5"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.5.55810.432:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C26BC64-02E4-454A-AF54-FB1B2237801B"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.5.57173.439:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22B9453D-EC9F-4C82-BE82-455CE1560647"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.8.64263.468:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D0CBAC49-96FE-4A4C-8FAB-E08487E172DF"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.8.64739.471:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3803F2CB-04D7-4B1D-8759-38FCA700F33E"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.8.65951.477:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "492C3D78-183F-4FAD-8D1D-1154349A8B94"}, {"criteria": "cpe:2.3:a:comodo:comodo_internet_security:3.9.95478.509:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5BEA510A-4B55-4CF3-BF82-9A877E483F38"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}