CVE-2006-5967

high

Description

Race condition in Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to cause memory corruption and execute arbitrary code via unknown vectors related to multiple invocations of the Analizar method in the ActiveScan.1 ActiveX control, which is not thread safe.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/30319

http://www.vupen.com/english/advisories/2006/4536

http://www.securityfocus.com/bid/21132

http://www.securityfocus.com/archive/1/451864/100/0/threaded

http://secunia.com/secunia_research/2006-64/advisory/

http://secunia.com/advisories/21763

Details

Source: Mitre, NVD

Published: 2006-11-17

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 5.1

Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 8.1

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.02801