200711.00.00

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

panda

NVD

Published: 2006-09-09

Updated: 2018-10-17

Summary

Panda Platinum Internet Security 2006 10.02.01 and 2007 11.00.00 uses sequential message numbers in generated URLs that are not filtered if the user replies to a message, which might allow remote attackers to determine mail usage patterns.

Vulnerable Configurations

Part	Description	Count
Application	Panda Panda Panda Platinum Internet Security 2006_10.02.01 Panda Panda Platinum Internet Security 2007_11.00.00	2

References

http://secunia.com/advisories/21769
http://securityreason.com/securityalert/1524
http://www.security.nnov.ru/advisories/pandais.asp
http://www.securityfocus.com/archive/1/445479/100/0/threaded
http://www.securityfocus.com/bid/19891