Published: 24/03/2008 Updated: 11/10/2018

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The cpoint.sys driver in Panda Internet Security 2008 and Antivirus+ Firewall 2008 allows local users to cause a denial of service (system crash or kernel panic), overwrite memory, or execute arbitrary code via a crafted IOCTL request that triggers an out-of-bounds write of kernel memory.

Vulnerable Product	Search on Vulmon	Subscribe to Product
panda panda_antivirus_and_firewall 2008
panda panda_internet_security 2008

source: wwwsecurityfocuscom/bid/28150/info Panda Internet Security/Antivirus+Firewall 2008 is prone to a vulnerability that allows local attackers to corrupt kernel memory This vulnerability occurs because the application fails to sufficiently validate IOCTL requests Local users may exploit this vulnerability to cause a denial of servi ...

CWE-399 http://www.trapkit.de/advisories/TKADV2008-001.txt http://www.pandasecurity.com/homeusers/support/card?id=41231&idIdioma=2&ref=ProdExp http://www.pandasecurity.com/homeusers/support/card?id=41337&idIdioma=2&ref=ProdExp http://www.securityfocus.com/bid/28150 http://www.securitytracker.com/id?1019568 http://secunia.com/advisories/29311 http://www.vupen.com/english/advisories/2008/0801/references https://exchange.xforce.ibmcloud.com/vulnerabilities/41079 http://www.securityfocus.com/archive/1/489292/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/31363/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-1471

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect