CVSS: 5.1EPSS: 11%CPEs: 2EXPL: 0CVE-2006-5967
https://notcve.org/view.php?id=CVE-2006-5967
Race condition in Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to cause memory corruption and execute arbitrary code via unknown vectors related to multiple invocations of the Analizar method in the ActiveScan.1 ActiveX control, which is not thread safe. Condición de carrera en Panda ActiveScan 5.53.00, y otras versiones anteriores a 5.54.01, permiten a un atacante remoto provocar corrupción de memoria y ejecutar código de su elección a través de vectores desconocidos relacionados con múltiples invocaciones del método Analizar en el controlador ActiveX de ActiveScan.1, el cual no es un hilo seguro. • http://secunia.com/advisories/21763 http://secunia.com/secunia_research/2006-64/advisory http://www.securityfocus.com/archive/1/451864/100/0/threaded http://www.securityfocus.com/bid/21132 http://www.vupen.com/english/advisories/2006/4536 https://exchange.xforce.ibmcloud.com/vulnerabilities/30319 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 2CVE-2006-4295 – Panda ActiveScan 5.53 - 'Ascan_6.asp' ActiveX Control Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2006-4295
Cross-site scripting (XSS) vulnerability in ascan_6.asp in Panda ActiveScan 5.53.00 allows remote attackers to inject arbitrary web script or HTML via the email parameter. Vulnerabilidad de secuencias de comandos web en sitios cruzados (XSS) en ascan_6.asp en Panda ActiveScan 5.53.00 permite a atacantes remotos inyectar secuencias de comandos web o HTML de su elección a través del parámetro email. • https://www.exploit-db.com/exploits/28373 http://lostmon.blogspot.com/2006/08/panda-activescan-xss-vulnerability.html http://securitytracker.com/id?1016696 http://www.osvdb.org/29147 http://www.securityfocus.com/bid/19471 •
CVSS: 7.5EPSS: 19%CPEs: 20EXPL: 0CVE-2005-3922
https://notcve.org/view.php?id=CVE-2005-3922
Heap-based buffer overflow in pskcmp.dll in Panda Software Antivirus library allows remote attackers to execute arbitrary code via a crafted ZOO archive. • http://secunia.com/advisories/17765 http://securityreason.com/securityalert/216 http://securitytracker.com/id?1015295 http://www.osvdb.org/21256 http://www.rem0te.com/public/images/panda.pdf http://www.securityfocus.com/archive/1/418096/100/0/threaded http://www.securityfocus.com/bid/15616 http://www.vupen.com/english/advisories/2005/2666 https://exchange.xforce.ibmcloud.com/vulnerabilities/23276 •
CVSS: 5.1EPSS: 0%CPEs: 1EXPL: 0CVE-2005-3230
https://notcve.org/view.php?id=CVE-2005-3230
Multiple interpretation error in unspecified versions of Panda Antivirus allows remote attackers to bypass virus detection via a malicious executable in a specially crafted RAR file with malformed central and local headers, which can still be opened by products such as Winrar and PowerZip, even though they are rejected as corrupted by Winzip and BitZipper. • http://marc.info/?l=bugtraq&m=112879611919750&w=2 http://shadock.net/secubox/AVCraftedArchive.html •
CVSS: 7.5EPSS: 10%CPEs: 1EXPL: 3CVE-2004-1904 – Panda ActiveScan 5.0 - 'ascontrol.dll' Remote Heap Overflow
https://notcve.org/view.php?id=CVE-2004-1904
Buffer overflow in ascontrol.dll in Panda ActiveScan 5.0 allows remote attackers to execute arbitrary code via the Internacional property followed by a long string. • https://www.exploit-db.com/exploits/23917 http://marc.info/?l=bugtraq&m=108130573130482&w=2 http://secunia.com/advisories/11312 http://theinsider.deep-ice.com/texts/advisory53.txt http://www.securityfocus.com/bid/10065 https://exchange.xforce.ibmcloud.com/vulnerabilities/15764 •