14 DAY TRIAL // Comodo Firewall Pro, a freeware firewall which attracted quite a large audience, needs to be updated as soon as possible in order to avoid a new vulnerability spotted in older versions. Security company Secunia rated the flaw as not critical, but it stated that a successful exploit of the flaw could cause a Denial of Service. According to the same advisory, the vulnerability has been confirmed in version 2.4.18.184 but other releases may be affected as well.
Core Security reported that this is the same vulnerability spotted in some other security products, including here BitDefender Antivirus, Sophos Antivirus and Rising Antivirus. Consumers who are currently using the mentioned vulnerable version are advised to update to version 3.0 which is said to include the fix that corrects the reported vulnerability.
"Insufficient argument validation of hooked SSDT functions on multiple Antivirus and Firewalls (BitDefender Antivirus, Comodo Firewall, Sophos Antivirus and Rising Antivirus) have been found that could lead to a Denial of Service (DoS) and possibly to code execution attacks. An attacker, utilizing these flaws, could be able to locally reboot the whole system shutting down the firewall or anti-virus protection. However, in some cases it may be possible to extend the impact of these bugs, and they could lead to the execution of arbitrary code in the privileged kernel mode," Core Security wrote in the advisory published yesterday.
Comodo Firewall Pro is quite a popular security product, the main proof being the number of downloads it recorded on the web. On Softpedia for instance, Comodo Firewall Pro brought no less than 60,845 hits. However, some users applaud the performance provided by Comodo while others advice consumers looking for a firewall to try a different product.
"Comodo is the best and it's free! I used ZoneAlarm and my system crashed every few days, and some true vector problem, now my roomate and I use Comodo on our computers and have no problems. I would give Comodo rate 11 of 10," a user nicknamed Davor said in a comment posted on Softpedia.
"System became extremely slow and unstable, taskbar disappeared from desktop, other security programs vanished, startup and shutdown took forever. Uninstalled Comodo and re-installed ZA and some others - all problems went away," Xenomorph commented.
However, if you're one of the users who like it, you can download the latest version of Comodo, the one which is said to contain all the fixes, using this link.