Short Name |
HTTP:STC:DL:PANDA-ZOO-BO |
---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Panda Antivirus ZOO Archive Decompression Buffer Overflow |
Release Date |
2010/09/15 |
Update Number |
1773 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability in Panda Antivirus. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the process's user.
Panda Software Antivirus products are prone to a heap overflow vulnerability. This issue is exposed when the antivirus library attempts to decompress ZOO archive files. Successful exploitation will result in execution of arbitrary code in the context of an affected application. The issue could affect desktop, gateway, and server antivirus applications on supported platforms. A number of third-party applications may also employ the affected library and could also be vulnerable. A conclusive list of affected products is not available at this time.