MitreCVE-2007-3969CVE-2007-3969
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
95.8%
Buffer overflow in Panda Antivirus before 20070720 allows remote attackers to execute arbitrary code via a crafted EXE file, resulting from an “Integer Cast Around.”
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| panda | panda_antivirus | * | cpe:2.3:a:panda:panda_antivirus:*:*:*:*:*:*:*:* |
References
secunia.com/advisories/26171
securityreason.com/securityalert/2920
www.nruns.com/%5Bn.runs-SA-2007.019%5D%20-%20Panda%20Antivirus%20EXE%20parsing%20Arbitrary%20Code%20Execution%20Advisory.pdf
www.nruns.com/%5Bn.runs-SA-2007.019%5D%20-%20Panda%20Antivirus%20EXE%20parsing%20Arbitrary%20Code%20Execution%20Advisory.txt
www.securityfocus.com/archive/1/474247/100/0/threaded
www.securityfocus.com/bid/24989
www.securitytracker.com/id?1018437
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
95.8%