Panda Products RKPavProc.sys IOCTL Handling Vulnerabilities

This script is Copyright (C) 2010-2014 Tenable Network Security, Inc.

Synopsis :

The remote host contains an antivirus application that is affected by
multiple vulnerabilities.

Description :

The installed Panda security product is reportedly affected by
multiple vulnerabilities in the 'RKPavProc.sys' kernel driver that can
be triggered by specially crafted IOCTLs, leading to a NULL pointer
dereference or a stack-based buffer overflow. An attacker could
leverage these flaws to cause a denial of service or execute arbitrary
code on the remote host with elevated privileges.

See also :

Solution :

Apply the appropriate hotfix as discussed in the vendor advisory

Risk factor :

High / CVSS Base Score : 7.2
CVSS Temporal Score : 5.3
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 47697 ()

Bugtraq ID: 41428


Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now