1. CVE-Search
  2. CVE-2006-5966
ID CVE-2006-5966
Summary Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to (1) reboot the system using the Reinicializar method in the ActiveScan.1 ActiveX control, or (2) determine arbitrary file existence and size via the ObtenerTamano method in the PAVPZ.SOS.1 ActiveX control. This vulnerability is addressed in the following product release: Panda, ActiveScan, 5.54.01
References
Vulnerable Configurations
  • cpe:2.3:a:panda:activescan:5.0:*:*:*:*:*:*:*
    cpe:2.3:a:panda:activescan:5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:panda:activescan:5.53.00:*:*:*:*:*:*:*
    cpe:2.3:a:panda:activescan:5.53.00:*:*:*:*:*:*:*
CVSS
Base: 6.4 (as of 17-10-2018 - 21:46)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:N/A:P
refmap via4
bid 21132
bugtraq 20061116 Secunia Research: Panda ActiveScan Multiple Vulnerabilities
misc http://secunia.com/secunia_research/2006-64/advisory/
secunia 21763
vupen ADV-2006-4536
xf
  • pandaactivescan-activescan-dos(30317)
  • pandaactivescan-pavpz-info-disclosure(30318)
Last major update 17-10-2018 - 21:46
Published 17-11-2006 - 22:07
Last modified 17-10-2018 - 21:46
Back to Top