CVE-2007-4191 (GCVE-0-2007-4191)

Vulnerability from cvelistv5 – Published: 2007-08-08 01:11 – Updated: 2024-08-07 14:46
VLAI
Summary
Panda Antivirus 2008 stores service executables under the product's installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657.
Severity
No CVSS data available.
CWE
  • n/a
Assigner
References
URL Tags
http://www.securityfocus.com/archive/1/480022/100… mailing-listx_refsource_BUGTRAQ
http://secunia.com/advisories/26336 third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/archive/1/480443/100… mailing-listx_refsource_BUGTRAQ
http://www.securitytracker.com/id?1018722 vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/25186 vdb-entryx_refsource_BID
http://www.securityfocus.com/archive/1/475373/100… mailing-listx_refsource_BUGTRAQ
https://tiifp.org/tarkus/advisories/panda030707.txt x_refsource_MISC
http://securityreason.com/securityalert/2968 third-party-advisoryx_refsource_SREASON
http://www.pandasecurity.com/homeusers/support/ca… x_refsource_CONFIRM
http://www.vupen.com/english/advisories/2007/2784 vdb-entryx_refsource_VUPEN
Date Public
2007-08-02 00:00
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T14:46:39.532Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20070919 RE: Panda Antivirus 2008 Local Privileg Escalation (UPS they did it again)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/480022/100/100/threaded"
          },
          {
            "name": "26336",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/26336"
          },
          {
            "name": "20070924 RE: Re[2]: [Full-disclosure] Panda Antivirus 2008 Local Privileg Escalation (UPS they did it again)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/480443/100/100/threaded"
          },
          {
            "name": "1018722",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1018722"
          },
          {
            "name": "25186",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/25186"
          },
          {
            "name": "20070802 Panda Antivirus 2008 Local Privileg Escalation (UPS they did it again)",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/475373/100/0/threaded"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://tiifp.org/tarkus/advisories/panda030707.txt"
          },
          {
            "name": "2968",
            "tags": [
              "third-party-advisory",
              "x_refsource_SREASON",
              "x_transferred"
            ],
            "url": "http://securityreason.com/securityalert/2968"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.pandasecurity.com/homeusers/support/card?id=41111\u0026idIdioma=2\u0026ref=PAV08Dev"
          },
          {
            "name": "ADV-2007-2784",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/2784"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-08-02T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Panda Antivirus 2008 stores service executables under the product\u0027s installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-15T20:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "20070919 RE: Panda Antivirus 2008 Local Privileg Escalation (UPS they did it again)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/480022/100/100/threaded"
        },
        {
          "name": "26336",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/26336"
        },
        {
          "name": "20070924 RE: Re[2]: [Full-disclosure] Panda Antivirus 2008 Local Privileg Escalation (UPS they did it again)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/480443/100/100/threaded"
        },
        {
          "name": "1018722",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1018722"
        },
        {
          "name": "25186",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/25186"
        },
        {
          "name": "20070802 Panda Antivirus 2008 Local Privileg Escalation (UPS they did it again)",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/475373/100/0/threaded"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://tiifp.org/tarkus/advisories/panda030707.txt"
        },
        {
          "name": "2968",
          "tags": [
            "third-party-advisory",
            "x_refsource_SREASON"
          ],
          "url": "http://securityreason.com/securityalert/2968"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.pandasecurity.com/homeusers/support/card?id=41111\u0026idIdioma=2\u0026ref=PAV08Dev"
        },
        {
          "name": "ADV-2007-2784",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/2784"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-4191",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Panda Antivirus 2008 stores service executables under the product\u0027s installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20070919 RE: Panda Antivirus 2008 Local Privileg Escalation (UPS they did it again)",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/480022/100/100/threaded"
            },
            {
              "name": "26336",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/26336"
            },
            {
              "name": "20070924 RE: Re[2]: [Full-disclosure] Panda Antivirus 2008 Local Privileg Escalation (UPS they did it again)",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/480443/100/100/threaded"
            },
            {
              "name": "1018722",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1018722"
            },
            {
              "name": "25186",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/25186"
            },
            {
              "name": "20070802 Panda Antivirus 2008 Local Privileg Escalation (UPS they did it again)",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/475373/100/0/threaded"
            },
            {
              "name": "https://tiifp.org/tarkus/advisories/panda030707.txt",
              "refsource": "MISC",
              "url": "https://tiifp.org/tarkus/advisories/panda030707.txt"
            },
            {
              "name": "2968",
              "refsource": "SREASON",
              "url": "http://securityreason.com/securityalert/2968"
            },
            {
              "name": "http://www.pandasecurity.com/homeusers/support/card?id=41111\u0026idIdioma=2\u0026ref=PAV08Dev",
              "refsource": "CONFIRM",
              "url": "http://www.pandasecurity.com/homeusers/support/card?id=41111\u0026idIdioma=2\u0026ref=PAV08Dev"
            },
            {
              "name": "ADV-2007-2784",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/2784"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-4191",
    "datePublished": "2007-08-08T01:11:00.000Z",
    "dateReserved": "2007-08-07T00:00:00.000Z",
    "dateUpdated": "2024-08-07T14:46:39.532Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2007-4191",
      "date": "2026-05-31",
      "epss": "0.00093",
      "percentile": "0.26105"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:panda:panda_antivirus:2008:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A12B6714-7FD7-4EF7-A506-80D3C53DC2FB\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Panda Antivirus 2008 stores service executables under the product\u0027s installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657.\"}, {\"lang\": \"es\", \"value\": \"Panda Antivirus 2008 almacena ejecutables de servicio bajo el directorio de instalaci\\u00f3n del producto con permisos d\\u00e9biles, lo cual permite a usuarios locales obtener privilegios LocalSystem modificando PAVSRV51.EXE u otros ficheros no especificados, un asunto similar a CVE-2006-4657.\"}]",
      "id": "CVE-2007-4191",
      "lastModified": "2024-11-21T00:35:00.007",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:M/Au:N/C:C/I:C/A:C\", \"baseScore\": 6.9, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 3.4, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": true, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2007-08-08T01:17:00.000",
      "references": "[{\"url\": \"http://secunia.com/advisories/26336\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securityreason.com/securityalert/2968\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.pandasecurity.com/homeusers/support/card?id=41111\u0026idIdioma=2\u0026ref=PAV08Dev\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/475373/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/480022/100/100/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/480443/100/100/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/25186\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.securitytracker.com/id?1018722\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/2784\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://tiifp.org/tarkus/advisories/panda030707.txt\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/26336\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securityreason.com/securityalert/2968\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.pandasecurity.com/homeusers/support/card?id=41111\u0026idIdioma=2\u0026ref=PAV08Dev\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/475373/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/480022/100/100/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/480443/100/100/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/25186\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.securitytracker.com/id?1018722\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/2784\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://tiifp.org/tarkus/advisories/panda030707.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2007-4191\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-08-08T01:17:00.000\",\"lastModified\":\"2026-04-23T00:35:47.467\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Panda Antivirus 2008 stores service executables under the product\u0027s installation directory with weak permissions, which allows local users to obtain LocalSystem privileges by modifying PAVSRV51.EXE or other unspecified files, a related issue to CVE-2006-4657.\"},{\"lang\":\"es\",\"value\":\"Panda Antivirus 2008 almacena ejecutables de servicio bajo el directorio de instalaci\u00f3n del producto con permisos d\u00e9biles, lo cual permite a usuarios locales obtener privilegios LocalSystem modificando PAVSRV51.EXE u otros ficheros no especificados, un asunto similar a CVE-2006-4657.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":6.9,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":3.4,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":true,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:panda:panda_antivirus:2008:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A12B6714-7FD7-4EF7-A506-80D3C53DC2FB\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/26336\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securityreason.com/securityalert/2968\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.pandasecurity.com/homeusers/support/card?id=41111\u0026idIdioma=2\u0026ref=PAV08Dev\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/475373/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/480022/100/100/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/480443/100/100/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/25186\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.securitytracker.com/id?1018722\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/2784\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://tiifp.org/tarkus/advisories/panda030707.txt\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/26336\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securityreason.com/securityalert/2968\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.pandasecurity.com/homeusers/support/card?id=41111\u0026idIdioma=2\u0026ref=PAV08Dev\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/475373/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/480022/100/100/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/480443/100/100/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/25186\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.securitytracker.com/id?1018722\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/2784\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://tiifp.org/tarkus/advisories/panda030707.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.





Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.


Detection rules are retrieved from Rulezet.