| CVE-2007-4191 | | 0.03 | — | 0.00 | | Aug 8, 2007 | Panda Antivirus 2008 stores service executables under the product's installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657. |
| CVE-2007-3969 | | 0.01 | — | 0.08 | | Jul 25, 2007 | Buffer overflow in Panda Antivirus before 20070720 allows remote attackers to execute arbitrary code via a crafted EXE file, resulting from an "Integer Cast Around." |
| CVE-2007-1673 | | 0.00 | — | 0.01 | | May 9, 2007 | unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file. |
| CVE-2007-1670 | | 0.00 | — | 0.02 | | May 9, 2007 | Panda Software Antivirus before 20070402 allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file. |
| CVE-2005-3922 | | 0.00 | — | 0.06 | | Nov 30, 2005 | Heap-based buffer overflow in pskcmp.dll in Panda Software Antivirus library allows remote attackers to execute arbitrary code via a crafted ZOO archive. |
| CVE-2000-0541 | | 0.00 | — | 0.00 | | Jun 17, 2000 | The Panda Antivirus console on port 2001 allows local users to execute arbitrary commands without authentication via the CMD command. |
