CVSS: 7.8EPSS: 1%CPEs: 9EXPL: 1CVE-2007-1670
https://notcve.org/view.php?id=CVE-2007-1670
09 May 2007 — Panda Software Antivirus before 20070402 allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file. Panda Software Antivirus versiones anteriores a 20070402 permite a atacantes remotos provocar una denegación de servicio (bucle infinito) mediante un archivo ZOO con una estructura de entradas de directorio que apuntan a un fichero previo. • http://osvdb.org/35845 •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2006-4657
https://notcve.org/view.php?id=CVE-2006-4657
09 Sep 2006 — Panda Platinum Internet Security 2006 10.02.01 and 2007 11.00.00 stores service executables under the product's installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying (1) WebProxy.exe or (2) PAVSRV51.EXE. Panda Platinum Internet Security 2006 10.02.01 and 2007 11.00.00 almacena executables del servicio bajo el directorio de instalación del producto con permisos débiles, que permiten a usuarios locales obtener los privilegios de LocalSystem modifi... • http://secunia.com/advisories/21769 •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2006-4658
https://notcve.org/view.php?id=CVE-2006-4658
09 Sep 2006 — Panda Platinum Internet Security 2006 10.02.01 and 2007 11.00.00 uses sequential message numbers in generated URLs that are not filtered if the user replies to a message, which might allow remote attackers to determine mail usage patterns. Panda Platinum Internet Security 2006 10.02.01 y 2007 11.00.00 utiliza los números de mensaje secuenciales en URLs generadas que no se filtran si el usuario contestó a un mensaje, lo cual permite a atacante remotos determinen patrones de uso del correo. • http://secunia.com/advisories/21769 •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2006-4659
https://notcve.org/view.php?id=CVE-2006-4659
09 Sep 2006 — The Panda Platinum Internet Security 2006 10.02.01 and 2007 11.00.00 uses predictable URLs for the spam classification of each message, which allows remote attackers to cause Panda to classify arbitrary messages as spam via a web page that contains IMG tags with the predictable URLs. NOTE: this issue could also be regarded as a cross-site request forgery (CSRF) vulnerability. The Panda Platinum Internet Security 2006 10.02.01 y 2007 11.00.00 utiliza URLs fiables para la clasificación de spam de cada mensaje... • http://secunia.com/advisories/21769 •
CVSS: 7.8EPSS: 5%CPEs: 20EXPL: 0CVE-2005-3922
https://notcve.org/view.php?id=CVE-2005-3922
30 Nov 2005 — Heap-based buffer overflow in pskcmp.dll in Panda Software Antivirus library allows remote attackers to execute arbitrary code via a crafted ZOO archive. • http://secunia.com/advisories/17765 •