Panda Software Antivirus before 20070402 allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Panda_activescan | Panda | 5.0 (including) | 5.0 (including) |
| Panda_activescan | Panda | 5.53.00 (including) | 5.53.00 (including) |
| Panda_activescan | Panda | 5.54.1 (including) | 5.54.1 (including) |
| Panda_antivirus | Panda | 2.0 (including) | 2.0 (including) |
| Panda_platinum_2006_internet_security | Panda | * | * |
| Panda_platinum_2007_internet_security | Panda | * | * |
| Panda_titanium_2005_antivirus | Panda | * | * |
| Panda_titanium_2006_antivirus_+_antispyware | Panda | * | * |
References
- http://osvdb.org/35845
- http://secunia.com/advisories/25152
- http://www.securityfocus.com/archive/1/467646/100/0/threaded
- http://www.securityfocus.com/bid/23823
- http://www.vupen.com/english/advisories/2007/1700
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34080
- http://osvdb.org/35845
- http://secunia.com/advisories/25152
- http://www.securityfocus.com/archive/1/467646/100/0/threaded
- http://www.securityfocus.com/bid/23823
- http://www.vupen.com/english/advisories/2007/1700
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34080