Vulnerability Description
An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially unprotected product directory. This DLL is then loaded into a high-privileged service before the binary signature validation logic is loaded, and might bypass some of the self-defense mechanisms.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Comodo | Comodo Internet Security | < 12.1.0.6914 |
Related Weaknesses (CWE)
References
- https://forums.comodo.com/news-announcements-feedback-cis/comodo-internet-securiRelease NotesVendor Advisory
- https://safebreach.com/Post/Comodo-Internet-Security-DLL-Preloading-and-PotentiaExploitThird Party Advisory
- https://safebreach.com/blogThird Party Advisory
- https://forums.comodo.com/news-announcements-feedback-cis/comodo-internet-securiRelease NotesVendor Advisory
- https://safebreach.com/Post/Comodo-Internet-Security-DLL-Preloading-and-PotentiaExploitThird Party Advisory
- https://safebreach.com/blogThird Party Advisory
FAQ
What is CVE-2019-18215?
CVE-2019-18215 is a vulnerability with a CVSS score of 7.8 (HIGH). An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially un...
How severe is CVE-2019-18215?
CVE-2019-18215 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-18215?
Check the references section above for vendor advisories and patch information. Affected products include: Comodo Comodo Internet Security.