Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:STC:DL:PANDA-ZOO-BO |
|---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Panda Antivirus ZOO Archive Decompression Buffer Overflow |
Release Date |
2010/09/15 |
Update Number |
1773 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Panda Antivirus ZOO Archive Decompression Buffer Overflow
This signature detects attempts to exploit a known vulnerability in Panda Antivirus. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the process's user.
Extended Description
Panda Software Antivirus products are prone to a heap overflow vulnerability. This issue is exposed when the antivirus library attempts to decompress ZOO archive files. Successful exploitation will result in execution of arbitrary code in the context of an affected application. The issue could affect desktop, gateway, and server antivirus applications on supported platforms. A number of third-party applications may also employ the affected library and could also be vulnerable. A conclusive list of affected products is not available at this time.
Affected Products
- Panda activescan 5.0.0
- Panda antivirus_for_netware 2.0.0
- Panda antivirus_platinum 2.0.0
- Panda businessecure_antivirus
- Panda clientshield_with_truprevent_technologies
- Panda enterprisecure_with_truprevent_technologies
- Panda exchangesecure
- Panda filesecure
- Panda filesecure_with_truprevent_technologies
- Panda gatedefender
- Panda isa_secure
- Panda panda_enterprisecure_antivirus
- Panda platinum_2006_internet_security
- Panda security 3.0.0
- Panda titanium
- Panda titanium_2005_antivirus
- Panda titanium_2006_antivirus_+_antispyware
- Panda truprevent_personal_2005
- Panda truprevent_personal_2006
- Panda webadmin
References
- BugTraq: 15616
- CVE: CVE-2005-3922