Vulnerability Description
Heap-based buffer overflow in pskcmp.dll in Panda Software Antivirus library allows remote attackers to execute arbitrary code via a crafted ZOO archive.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Panda | Panda Activescan | 5.0 |
| Panda | Panda Antivirus | 2.0 |
| Panda | Panda Antivirus Platinum | 2.0 |
| Panda | Panda Businessecure Antivirus | All versions |
| Panda | Panda Clientshield With Truprevent Technologies | All versions |
| Panda | Panda Enterprisecure With Truprevent Technologies | All versions |
| Panda | Panda Exchangesecure | All versions |
| Panda | Panda Filesecure | All versions |
| Panda | Panda Filesecure With Truprevent Technologies | All versions |
| Panda | Panda Gatedefender | All versions |
| Panda | Panda Isa Secure | All versions |
| Panda | Panda Panda Enterprisecure Antivirus | All versions |
| Panda | Panda Platinum 2006 Internet Security | All versions |
| Panda | Panda Security | 3.0 |
| Panda | Panda Titanium | All versions |
| Panda | Panda Titanium 2005 Antivirus | All versions |
| Panda | Panda Titanium 2006 Antivirus \+ Antispyware | All versions |
| Panda | Panda Truprevent Personal | 2005 |
| Panda | Panda Webadmin | All versions |
References
- http://secunia.com/advisories/17765
- http://securityreason.com/securityalert/216
- http://securitytracker.com/id?1015295
- http://www.osvdb.org/21256
- http://www.rem0te.com/public/images/panda.pdfVendor Advisory
- http://www.securityfocus.com/archive/1/418096/100/0/threaded
- http://www.securityfocus.com/bid/15616
- http://www.vupen.com/english/advisories/2005/2666
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23276
- http://secunia.com/advisories/17765
- http://securityreason.com/securityalert/216
- http://securitytracker.com/id?1015295
- http://www.osvdb.org/21256
- http://www.rem0te.com/public/images/panda.pdfVendor Advisory
- http://www.securityfocus.com/archive/1/418096/100/0/threaded
FAQ
What is CVE-2005-3922?
CVE-2005-3922 is a vulnerability with a CVSS score of 7.5 (HIGH). Heap-based buffer overflow in pskcmp.dll in Panda Software Antivirus library allows remote attackers to execute arbitrary code via a crafted ZOO archive.
How severe is CVE-2005-3922?
CVE-2005-3922 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-3922?
Check the references section above for vendor advisories and patch information. Affected products include: Panda Panda Activescan, Panda Panda Antivirus, Panda Panda Antivirus Platinum, Panda Panda Businessecure Antivirus, Panda Panda Clientshield With Truprevent Technologies.