Comodo: "Weak Hash Function Exploitation Vulnerability"? [Resolved]


I’ve just been cruising the Net and discovered a couple of pages which appear to be casting doubt about CFP.

The two main pages to this apparent doubt are…

…and seem to refer only to CFP Versions prior to my current version of

The quoted title of one page’s sub-section is: “Comodo DLL Injection via Weak Hash Function Exploitation Vulnerability”.

  • What is that these folks are really talking about?

  • In my version, has this problem been addressed and eliminated?

  • Is this now an issue that is safe to disregard as fixed?


This issue will be fixed in CFP 3.
Have a look at this thread:,6536.0.html


Many thanks for the information.

I look forward, keenly, to the fixed version.