3 matches found
CVE-2006-4659
The CVE-2006-4659 entry concerns Panda Platinum Internet Security 2006 (10.02.01) and 2007 (11.00.00), where predictable URLs used for per-message spam classification can be triggered by a malicious web page containing IMG tags to have Panda classify arbitrary messages as spam. This is a potentia...
CVE-2006-4658
The CVE-2006-4658 issue affects Panda Platinum Internet Security 2006 (10.02.01) and 2007 (11.00.00). The root cause is the use of sequential message numbers in generated URLs that are not filtered when a user replies to a message, which could allow remote attackers to infer mail usage patterns. ...
CVE-2006-4657
CVE-2006-4657 affects Panda Platinum Internet Security 2006/2007 builds; it stores service executables under the product installation directory with weak permissions. This allows a local attacker to escalate to LocalSystem by modifying (1) WebProxy.exe or (2) PAVSRV51.EXE, enabling privilege esca...