← back
CVE-2008-3156

CVE-2008-3156

EPSS 4.1%
The ActiveScan ActiveX Control (as2guiie.dll) in Panda ActiveScan before 1.02.00 allows remote attackers to download and execute arbitrary cabinet (CAB) files via unspecified URLs passed to the Update method.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/6004unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://karol.wiesek.pl/files/panda.tgzhttp://lists.grok.org.uk/pipermail/full-disclosure/2008-July/063061.htmlhttp://lists.grok.org.uk/pipermail/full-disclosure/2008-July/063068.htmlhttp://secunia.com/advisories/30841https://exchange.xforce.ibmcloud.com/vulnerabilities/43587https://www.exploit-db.com/exploits/6004http://www.securityfocus.com/bid/30086http://www.securitytracker.com/id?1020432http://www.vupen.com/english/advisories/2008/2008/references