Panda: >> Panda Antivirus Security Vulnerabilities
Panda Antivirus 2008 stores service executables under the product's installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657.
CVSS Score
6.9
EPSS Score
0.001
Published
2007-08-08
Buffer overflow in Panda Antivirus before 20070720 allows remote attackers to execute arbitrary code via a crafted EXE file, resulting from an "Integer Cast Around."
CVSS Score
9.3
EPSS Score
0.078
Published
2007-07-25
unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
CVSS Score
7.8
EPSS Score
0.013
Published
2007-05-09
Panda Software Antivirus before 20070402 allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
CVSS Score
7.8
EPSS Score
0.015
Published
2007-05-09
Heap-based buffer overflow in pskcmp.dll in Panda Software Antivirus library allows remote attackers to execute arbitrary code via a crafted ZOO archive.
CVSS Score
7.5
EPSS Score
0.056
Published
2005-11-30
The Panda Antivirus console on port 2001 allows local users to execute arbitrary commands without authentication via the CMD command.
CVSS Score
7.2
EPSS Score
0.001
Published
2000-06-17