Panda Security cpoint.sys Kernel Memory Corruption

High Nessus Plugin ID 31462


The remote host contains an application that is affected by a kernel memory corruption vulnerability.


A vulnerability in the 'Cpoint.sys' kernel driver shipped with Panda Antivirus+ Firewall 2008 and Panda Internet Security 2008 fails to sufficiently validate IOCTL requests before processing them. A local attacker may be able to leverage this issue to execute arbitrary code with kernel privileges or crash the system by causing a kernel panic.


Apply the appropriate hotfix as discussed in the vendor advisories above.

See Also

Plugin Details

Severity: High

ID: 31462

File Name: panda_av_fw_cpoint_sys_kernel_mem_corrupt.nasl

Version: $Revision: 1.16 $

Type: local

Agent: windows

Family: Windows

Published: 2008/03/13

Modified: 2016/11/02

Dependencies: 20283, 13855

Risk Information

Risk Factor: High


Base Score: 7.2

Temporal Score: 6.3

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:panda:panda_antivirus_and_firewall

Required KB Items: SMB/Registry/Enumerated, Antivirus/Panda/installed

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2008/03/07

Reference Information

CVE: CVE-2008-1471

BID: 28150

OSVDB: 42717

Secunia: 29311

CWE: 399