Vulnerabilities > CVE-2006-6622
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Soft4Ever Look 'n' Stop (LnS) 2.05p2 before 20061215 relies on the Process Environment Block (PEB) to identify a process, which allows local users to bypass the product's controls on a process by spoofing the (1) ImagePathName, (2) CommandLine, and (3) WindowTitle fields in the PEB.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 | |
| Application | 1 | |
| Application | 1 | |
| Application | 1 | |
| Application | 1 | |
| Application | 1 |
References
- http://www.matousec.com/downloads/windows-personal-firewall-analysis/ex-coat.zip
- http://www.matousec.com/info/advisories/Bypassing-process-identification-serveral-personal-firewalls-HIPS.php
- http://www.wilderssecurity.com/showthread.php?t=158155
- http://www.securityfocus.com/bid/21615
- http://www.securityfocus.com/archive/1/454522/100/0/threaded