Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2019-14694

A use-after-free flaw in the sandbox container implemented in cmdguard.sys in Comodo Antivirus 12.0.0.6870 can be triggered due to a race condition when handling IRP_MJ_CLEANUP requests in the minifilter for directory change notifications. This allows an attacker to cause a denial of service (BSOD) when an executable is run inside the container.

Published

2019-08-28T20:15:10.670

Last Modified

2024-11-21T04:27:09.320

Status

Modified

Source

[email protected]

Severity

CVSSv3.0: 4.7 (MEDIUM)

CVSSv2 Vector

AV:L/AC:M/Au:N/C:N/I:N/A:C

Access Vector: LOCAL
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: COMPLETE

Exploitability Score

3.4

Impact Score

6.9

Weaknesses

Type: Primary
CWE-362
CWE-416

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	comodo	antivirus	12.0.0.6870	Yes

References

http://rce4fun.blogspot.com/2019/08/comodo-antivirus-sandbox-race-condition.html Exploit, Third Party Advisory ([email protected])
https://github.com/SouhailHammou/Exploits/blob/master/CVE-2019-14694%20-%20Comodo%20AV%20Sandbox%20Race%20Condition%20UAF/comodo_av_uaf_poc.c Patch ([email protected])
http://rce4fun.blogspot.com/2019/08/comodo-antivirus-sandbox-race-condition.html Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/SouhailHammou/Exploits/blob/master/CVE-2019-14694%20-%20Comodo%20AV%20Sandbox%20Race%20Condition%20UAF/comodo_av_uaf_poc.c Patch (af854a3a-2127-422b-91ae-364da2661108)