← back
CVE-2008-1471

CVE-2008-1471

EPSS 1.1%
The cpoint.sys driver in Panda Internet Security 2008 and Antivirus+ Firewall 2008 allows local users to cause a denial of service (system crash or kernel panic), overwrite memory, or execute arbitrary code via a crafted IOCTL request that triggers an out-of-bounds write of kernel memory.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/31363unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/29311https://exchange.xforce.ibmcloud.com/vulnerabilities/41079http://www.pandasecurity.com/homeusers/support/card?id=41231&idIdioma=2&ref=ProdExphttp://www.pandasecurity.com/homeusers/support/card?id=41337&idIdioma=2&ref=ProdExphttp://www.securityfocus.com/archive/1/489292/100/0/threadedhttp://www.securityfocus.com/bid/28150http://www.securitytracker.com/id?1019568http://www.trapkit.de/advisories/TKADV2008-001.txthttp://www.vupen.com/english/advisories/2008/0801/references