Lucene search

[email protected]CVE-2007-4191

HistoryAug 08, 2007 - 1:17 a.m.

CVE-2007-4191

2007-08-0801:17:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-4191

panda antivirus 2008

weak permissions

localsystem privileges

nvd

6.6 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

8.9%

JSON

Panda Antivirus 2008 stores service executables under the product’s installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657.

CPENameOperatorVersion
panda:panda_antiviruspanda panda antiviruseq2008

CPE	Name	Operator	Version
panda:panda_antivirus	panda panda antivirus	eq	2008

References

secunia.com/advisories/26336

securityreason.com/securityalert/2968

www.pandasecurity.com/homeusers/support/card?id=41111&idIdioma=2&ref=PAV08Dev

www.securityfocus.com/archive/1/475373/100/0/threaded

www.securityfocus.com/archive/1/480022/100/100/threaded

www.securityfocus.com/archive/1/480443/100/100/threaded

www.securityfocus.com/bid/25186

www.securitytracker.com/id?1018722

www.vupen.com/english/advisories/2007/2784

tiifp.org/tarkus/advisories/panda030707.txt

6.6 Medium

AI Score

Confidence

Low

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

8.9%

JSON

Related for CVE-2007-4191

prion1 cve1