Recent Posts

Pages: [1] 2 3 ... 10
1
Firewall Help - CIS / CIS dialogs don't open and it hangs
« Last post by Hikari on Today at 08:11:39 PM »
I installed CIS a few days ago, it's fully updated.

But all of a sudden its dialogs don't open anymore. First time I noticed it I tried to open Settings and it didn't work. Then  I tried View Connections and nothing. After trying 1 or 2 times the whole main window hangs and goes unresponsive. Even its alert dialog hangs and I can't allow/block a request.

If I reboot PC its main window goes back responsive, I can disable and enable antivirus and its alert dialog shows up. But if I try to open any dialog or answer an alert, it hangs again.

If it hangs by answering an alert, double click on systray or executing its start menu link doesn't open its main window.
2
3 Files (7.hta , pestudio files)
(https://www.sendspace.com/file/ysz82j)

Hi yigido,

We are processing your request.

Thanks,
Premnath
3
If you mean that CIS doesn't do command-line analysis of python scripts? Which can be easily addressed by adding *\python.exe and *\pythonw.exe to the heuristic command-line analysis for certain applications list. Which I thought was strange when looking at the list, that perl was there but not python and I consider python to be more widespread on windows than perl. Of course it requires python to be installed on a users PC for this particular attack to work.

Exactly. Its a configuration issue. You are right about python.  We will simply make this part of default config so you dont have to add it manually. Thats all.
4
Sumo Updater (portable .exe)
SHA1: 02500af0d4768ceaaed6e8fdd5728590bd50fb88
https://valkyrie.comodo.com/get_info?sha1=02500af0d4768ceaaed6e8fdd5728590bd50fb88

Hi yigido,

We are processing your request.

Thanks,
Premnath
5
who realizes what CCAV can do for you that no other AV can?
6
Correct. The PoC we have is a new COMODO specific vulnerability which can allow attacker to do a few things with default configuration. Default config needs to be slightly changed. In April, we wiil disclose the details.
If you mean that CIS doesn't do command-line analysis of python scripts? Which can be easily addressed by adding *\python.exe and *\pythonw.exe to the heuristic command-line analysis for certain applications list. Which I thought was strange when looking at the list, that perl was there but not python and I consider python to be more widespread on windows than perl. Of course it requires python to be installed on a users PC for this particular attack to work.
7

The Comodo attack is the only one that doesn't use our publicly available POC code, but rather a different private code.
We decided not to share the private code in order to protect Comodo users, but Egemen (from Comodo) have received it and is aware of it.

Correct. The PoC we have is a new COMODO specific issue which can allow attacker to do a few things with default configuration. Default config needs to be slightly changed. See below for configuration changes to cover this PoC as well.
8
thanks but nothing happens. comodo 10 sucks. it's s**t.  :-TD
10
Sumo Updater (portable .exe)
SHA1: 02500af0d4768ceaaed6e8fdd5728590bd50fb88
https://valkyrie.comodo.com/get_info?sha1=02500af0d4768ceaaed6e8fdd5728590bd50fb88
Pages: [1] 2 3 ... 10
Seo4Smf 2.0 © SmfMod.Com Smf Destek