These are trojan horses and have nothing to do with the firewall per se.
It's the job of virus detection software, and NOT the firewall, to identify trojan horses and the like that are *already* in the system ... likely downloaded explicitly by the User and not due to some weakness in the firewall.