Executable installers are vulnerable^WEVIL (case 32): Comodo's installers allow arbitrary (remote) code execution WITH escalation of privilege

March 23, 2016 007admin Leave a comment

Posted by Stefan Kanthak on Mar 23

Hi @ll,

the executable installers cispro_30day_installer_1150_8d.exe,
cispremium_installer_6100_08.exe, cav_installer_5951_60.exe,
cav_installer.exe and cfw_installer.exe available from
<http://www.comodo.com> load and execute several DLLs from
their “application directory”.

For software downloaded with a web browser the application
directory is typically the user’s “Downloads” directory: see
<…

007 Software

Executable installers are vulnerable^WEVIL (case 32): Comodo's installers allow arbitrary (remote) code execution WITH escalation of privilege

Leave a Reply Cancel reply

Software and Security Information