6.6 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
8.9%
Panda Antivirus 2008 stores service executables under the product’s installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657.
CPE | Name | Operator | Version |
---|---|---|---|
panda:panda_antivirus | panda panda antivirus | eq | 2008 |
secunia.com/advisories/26336
securityreason.com/securityalert/2968
www.pandasecurity.com/homeusers/support/card?id=41111&idIdioma=2&ref=PAV08Dev
www.securityfocus.com/archive/1/475373/100/0/threaded
www.securityfocus.com/archive/1/480022/100/100/threaded
www.securityfocus.com/archive/1/480443/100/100/threaded
www.securityfocus.com/bid/25186
www.securitytracker.com/id?1018722
www.vupen.com/english/advisories/2007/2784
tiifp.org/tarkus/advisories/panda030707.txt