VYPR

Activescan

by Panda Project

CVEs (10)

  • CVE-2008-3155Jul 11, 2008
    risk 0.04cvss epss 0.08

    Stack-based buffer overflow in the ActiveX control (as2guiie.dll) in Panda ActiveScan before 1.02.00 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long argument to the Update method.

  • CVE-2008-3156Jul 11, 2008
    risk 0.03cvss epss 0.04

    The ActiveScan ActiveX Control (as2guiie.dll) in Panda ActiveScan before 1.02.00 allows remote attackers to download and execute arbitrary cabinet (CAB) files via unspecified URLs passed to the Update method.

  • CVE-2006-4295Aug 23, 2006
    risk 0.03cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in ascan_6.asp in Panda ActiveScan 5.53.00 allows remote attackers to inject arbitrary web script or HTML via the email parameter.

  • CVE-2004-1904Dec 31, 2004
    risk 0.03cvss epss 0.05

    Buffer overflow in ascontrol.dll in Panda ActiveScan 5.0 allows remote attackers to execute arbitrary code via the Internacional property followed by a long string.

  • CVE-2009-3735Feb 11, 2010
    risk 0.00cvss epss 0.06

    The ActiveScan Installer ActiveX control in as2stubie.dll before 1.3.3.0 in PandaActiveScan Installer 2.0 in Panda ActiveScan downloads software in an as2guiie.cab archive located at an arbitrary URL, and does not verify the archive's digital signature before installation, which…

  • CVE-2007-1670May 9, 2007
    risk 0.00cvss epss 0.03

    Panda Software Antivirus before 20070402 allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.

  • CVE-2006-5966Nov 17, 2006
    risk 0.00cvss epss 0.02

    Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to (1) reboot the system using the Reinicializar method in the ActiveScan.1 ActiveX control, or (2) determine arbitrary file existence and size via the ObtenerTamano method in the PAVPZ.SOS.1…

  • CVE-2006-5967Nov 17, 2006
    risk 0.00cvss epss 0.02

    Race condition in Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to cause memory corruption and execute arbitrary code via unknown vectors related to multiple invocations of the Analizar method in the ActiveScan.1 ActiveX control, which is…

  • CVE-2005-3922Nov 30, 2005
    risk 0.00cvss epss 0.06

    Heap-based buffer overflow in pskcmp.dll in Panda Software Antivirus library allows remote attackers to execute arbitrary code via a crafted ZOO archive.

  • CVE-2004-1905Dec 31, 2004
    risk 0.00cvss epss 0.02

    ascontrol.dll in Panda ActiveScan 5.0 allows remote attackers to cause a denial of service (crash) by calling the SetSitesFile function.