Vulnerabilities > CVE-2007-3969 - Unspecified vulnerability in Panda Antivirus
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN panda
nessus
Summary
Buffer overflow in Panda Antivirus before 20070720 allows remote attackers to execute arbitrary code via a crafted EXE file, resulting from an "Integer Cast Around."
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
| NASL family | Windows |
| NASL id | PANDA_EXE_FILE_PARSING_OVERFLOW.NASL |
| description | The version of Panda Antivirus installed on the remote host reportedly contains a buffer overflow in its file parsing engine. Using a specially crafted EXE file, a remote attacker may be able to leverage this issue to crash the affected application or to execute arbitrary code. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 25764 |
| published | 2007-07-25 |
| reporter | This script is Copyright (C) 2007-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/25764 |
| title | Panda Antivirus EXE File Parsing Overflow |
References
- http://www.securityfocus.com/bid/24989
- http://secunia.com/advisories/26171
- http://www.securitytracker.com/id?1018437
- http://securityreason.com/securityalert/2920
- http://www.securityfocus.com/archive/1/474247/100/0/threaded
- http://www.nruns.com/%5Bn.runs-SA-2007.019%5D%20-%20Panda%20Antivirus%20EXE%20parsing%20Arbitrary%20Code%20Execution%20Advisory.pdf
- http://www.nruns.com/%5Bn.runs-SA-2007.019%5D%20-%20Panda%20Antivirus%20EXE%20parsing%20Arbitrary%20Code%20Execution%20Advisory.txt