Panda Antivirus Insecure File Permissions Local Privilege Escalation Vulnerability
BID:25186
Info
Panda Antivirus Insecure File Permissions Local Privilege Escalation Vulnerability
| Bugtraq ID: | 25186 |
| Class: | Design Error |
| CVE: |
CVE-2007-4191 |
| Remote: | No |
| Local: | Yes |
| Published: | Aug 02 2007 12:00AM |
| Updated: | May 07 2015 05:36PM |
| Credit: | tarkus is credited with discovering this vulnerability. |
| Vulnerable: |
Panda Antivirus 2008 Panda Antivirus 2007 |
| Not Vulnerable: |
Panda Internet Security 2008 Panda Antivirus + Firewall 2008 |
Discussion
Panda Antivirus Insecure File Permissions Local Privilege Escalation Vulnerability
Panda Antivirus is prone to a local privilege-escalation vulnerability that stems from a design error. This vulnerability occurs because the application assigns insecure file permissions to certain directories upon installation.
An attacker may exploit this vulnerability to overwrite files with arbitrary code in the affected directories. The arbitrary code is then executed with System-level privileges. This may facilitate a complete compromise of affected computers.
Panda Antivirus 2008 is reported vulnerable.
This issue is related to BID 19891: Panda Platinum Internet Security 2006/2007 Local Privilege Escalation Vulnerability.
Panda Antivirus is prone to a local privilege-escalation vulnerability that stems from a design error. This vulnerability occurs because the application assigns insecure file permissions to certain directories upon installation.
An attacker may exploit this vulnerability to overwrite files with arbitrary code in the affected directories. The arbitrary code is then executed with System-level privileges. This may facilitate a complete compromise of affected computers.
Panda Antivirus 2008 is reported vulnerable.
This issue is related to BID 19891: Panda Platinum Internet Security 2006/2007 Local Privilege Escalation Vulnerability.
Exploit / POC
Panda Antivirus Insecure File Permissions Local Privilege Escalation Vulnerability
The following proof-of-concept is available:
The following proof-of-concept is available:
Solution / Fix
Panda Antivirus Insecure File Permissions Local Privilege Escalation Vulnerability
Solution:
The vendor released a hotfix to address this issue. Please see the references for further information.
Panda Antivirus 2008
Solution:
The vendor released a hotfix to address this issue. Please see the references for further information.
Panda Antivirus 2008
-
Panda hfl30708s1.exe
http://www.pandasecurity.com/resources/sop/PAV2008/hfl30708s1.exe
References
Panda Antivirus Insecure File Permissions Local Privilege Escalation Vulnerability
References:
References:
- Panda Antivirus 2008 protection against external modification. (Panda)
- Panda Antivirus EoP (BID 25186) (Edi Strosar)
- Panda Software Homepage (Panda Software)
- Panda Antivirus 2008 Local Privileg Escalation (UPS they did it again) (tarkus)
- RE: Panda Antivirus 2008 Local Privileg Escalation (UPS they did it again) (Panda Security Response)