---------------------------------------------------------------------- Want a new job? http://secunia.com/secunia_security_specialist/ http://secunia.com/hardcore_disassembler_and_reverse_engineer/ International Partner Manager - Project Sales in the IT-Security Industry: http://corporate.secunia.com/about_secunia/64/ ---------------------------------------------------------------------- TITLE: Panda ActiveScan Two Vulnerabilities SECUNIA ADVISORY ID: SA30841 VERIFY ADVISORY: http://secunia.com/advisories/30841/ CRITICAL: Highly critical IMPACT: System access WHERE: >From remote SOFTWARE: Panda ActiveScan 2.0 1.x http://secunia.com/product/19244/ DESCRIPTION: Karol Wiesek has reported two vulnerabilities in Panda ActiveScan, which can be exploited by malicious people to compromise a user's system. 1) A boundary error in the ActiveScan 2.0 AV Class ActiveX control (as2guiie.dll) when processing input supplied to the "Update()" method can be exploited to cause a stack-based buffer overflow via a specially crafted web page. 2) A design error in the ActiveScan 2.0 AV Class ActiveX control allows installing arbitrary cabinet files on a user's system via the "Update()" method. Successful exploitation allows execution of arbitrary code. According to the vendor, the vulnerabilities affect versions prior to version 1.02.00. SOLUTION: Update to version 1.02.00 or later. http://www.pandasecurity.com/activescan PROVIDED AND/OR DISCOVERED BY: Karol Wiesek ORIGINAL ADVISORY: http://lists.grok.org.uk/pipermail/full-disclosure/2008-July/063061.html ---------------------------------------------------------------------- About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities. Subscribe: http://secunia.com/secunia_security_advisories/ Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/ Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. ---------------------------------------------------------------------- Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org ----------------------------------------------------------------------