Vulnerability Description
Race condition in Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to cause memory corruption and execute arbitrary code via unknown vectors related to multiple invocations of the Analizar method in the ActiveScan.1 ActiveX control, which is not thread safe.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Panda | Activescan | 5.0 |
References
- http://secunia.com/advisories/21763
- http://secunia.com/secunia_research/2006-64/advisory/PatchVendor Advisory
- http://www.securityfocus.com/archive/1/451864/100/0/threaded
- http://www.securityfocus.com/bid/21132
- http://www.vupen.com/english/advisories/2006/4536
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30319
- http://secunia.com/advisories/21763
- http://secunia.com/secunia_research/2006-64/advisory/PatchVendor Advisory
- http://www.securityfocus.com/archive/1/451864/100/0/threaded
- http://www.securityfocus.com/bid/21132
- http://www.vupen.com/english/advisories/2006/4536
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30319
FAQ
What is CVE-2006-5967?
CVE-2006-5967 is a vulnerability with a CVSS score of 5.1 (MEDIUM). Race condition in Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to cause memory corruption and execute arbitrary code via unknown vectors related to multiple inv...
How severe is CVE-2006-5967?
CVE-2006-5967 has been rated MEDIUM with a CVSS base score of 5.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5967?
Check the references section above for vendor advisories and patch information. Affected products include: Panda Activescan.