Intrusion PreventionPanda.Antivirus.ZOO.Archive.Heap.Overflow
Description
It indicates a possible exploit of Heap-based buffer overflow vulnerability in Panda Software Antivirus library.
This flaw is due to a heap overflow error in the "pskcmp.dll" library when analyzing malformed ZOO archives, which may be exploited by an unauthenticated remote attacker to execute arbitrary commands and take complete control of an affected system (e.g. by sending an e-mail containing a specially crafted attachment to a vulnerable system).
Affected Products
Panda Software BusinesSecure Antivirus
Panda Software CommandlineSecure Antivirus
Panda Software CVPSecure Antivirus
Panda Software DominoSecure Antivirus
Panda Software Enterprise Suite Antivirus
Panda Software ExchangeSecure Antivirus
Panda Software FileSecure Antivirus
Panda Software ISASecure Antivirus
Panda Software PerimeterScan
Panda Software PostfixSecure Antivirus
Panda Software ProxySecure Antivirus
Panda Software Platinum Antivirus
Panda Software QmailSecure Antivirus
Panda Software SendmailSecure Antivirus
Panda Software Small Business Edition Antivirus
Panda Software Titanium Antivirus
Impact
Execute arbitrary code
Recommended Actions
Antivirus products were updated automatically through the regular update function.
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
| ID | 13479 |
| Created | Oct 19, 2006 |
| Updated | Nov 15, 2021 |
| Risk |
|
| CVE ID | CVE-2005-3922 |
| Exploit Prediction Score | 25.37% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | Other |