Comodo currently does not support ASLR (Address Space Layout Randomization). This in itself is a vulnerability since unknown vulnerabilities in Comodo are easier to exploit for malware.
Comodo loads a dll into every executable running on the system, and this dll is also not ASLR-enabled. This means that every program running on the computer has lower protection because of Comodo not having ASLR.
Enabling ASLR support is easy, it is just a compiler switch, and it does not require any code rewrite. All modern compilers support ASLR (I hope Comodo does not use ancient compilers).
I have tested enabling support of ASLR in Comodo using a “hack”, and there were no problems with it, therefore Comodo works just fine with it.
Most other security software already supports ASLR.
Please enable ASLR support soon, not waiting for Comodo 6.
I would rather not disclose it, since it involves switching off Driver Signing protection in win7, and I also cannot distribute modified Comodo executables & DLLs due to Comodo license not permitting it.
However, you can also use (with some caveats) the Enhanced Mitigation Experience Toolkit to force ASLR on Comodo executables.
I heard a lot of criticism on security forums that Comodo don’t keep up to date with other security firms… But there will be never any security which can cover all vulnerabilities… You don’t need all the protection anyway unless you have hackers at bay… And anything can be hacked into if somebody try hard enough…