CVE-2019-12042
Summary
| CVE | CVE-2019-12042 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-05-23 14:29:00 UTC |
| Updated | 2020-08-24 17:37:00 UTC |
| Description | Insecure permissions of the section object Global\PandaDevicesAgentSharedMemory and the event Global\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, which leads to privilege escalation when the CmdLineExecute event is queued. This affects Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection, and Panda Internet Security. |
Risk And Classification
Problem Types: CWE-732
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Pandasecurity | Panda Antivirus | All | All | All | All |
| Application | Pandasecurity | Panda Antivirus | All | All | All | All |
| Application | Pandasecurity | Panda Antivirus Pro | All | All | All | All |
| Application | Pandasecurity | Panda Antivirus Pro | All | All | All | All |
| Application | Pandasecurity | Panda Dome | All | All | All | All |
| Application | Pandasecurity | Panda Dome | All | All | All | All |
| Application | Pandasecurity | Panda Global Protection | All | All | All | All |
| Application | Pandasecurity | Panda Global Protection | All | All | All | All |
| Application | Pandasecurity | Panda Gold Protection | All | All | All | All |
| Application | Pandasecurity | Panda Gold Protection | All | All | All | All |
| Application | Pandasecurity | Panda Internet Security | All | All | All | All |
| Application | Pandasecurity | Panda Internet Security | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Reverse Engineering 0x4 Fun: Panda Antivirus - Local Privilege Escalation (CVE-2019-12042) | MISC | rce4fun.blogspot.com | Exploit, Third Party Advisory |
| Vulnerability of local privilege escalation in the AgentSvc process with Consumer products (CVE-2019-12042) - Technical Support - Panda Security | CONFIRM | www.pandasecurity.com | Vendor Advisory |
| GitHub - SouhailHammou/Panda-Antivirus-LPE: The exploit for Panda AV LPE | MISC | github.com | Exploit, Third Party Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.