Comodo Internet Security 2025 Exposes CVSS 7.5 DoS Flaw, Prompting Uninstall Advice
Updated
Updated · heise online · Jun 8
Comodo Internet Security 2025 Exposes CVSS 7.5 DoS Flaw, Prompting Uninstall Advice
1 articles · Updated · heise online · Jun 8
Summary
CVE-2026-49494 lets remote attackers crash systems running Comodo Internet Security 2025 by sending a crafted IPv6 packet that triggers an integer underflow in the firewall driver.
Version 12.3.4.8162—the current release cited in Comodo's forum—remains vulnerable, and the flaw hits before firewall rules apply, even when all ports are blocked.
Researcher Marcus Hutchins said he reported the bug, root-cause analysis and patch suggestions to Comodo, then published a proof-of-concept after receiving no initial response and seeing no update in sight.
The bug, nicknamed "ComoDoS," was found while Hutchins was probing vulnerable drivers; heise advised users to uninstall Comodo and rely on Microsoft Defender and Windows Firewall instead.
Comodo's software was also flagged about a year ago for flaws that allowed malicious code injection and execution, adding to concerns about maintenance.