Vulnerabilites related to pandasecurity - panda_internet_security
Vulnerability from fkie_nvd
Published
2019-05-23 14:29
Modified
2024-11-21 04:22
Severity ?
Summary
Insecure permissions of the section object Global\PandaDevicesAgentSharedMemory and the event Global\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, which leads to privilege escalation when the CmdLineExecute event is queued. This affects Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection, and Panda Internet Security.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | https://github.com/SouhailHammou/Panda-Antivirus-LPE | Exploit, Third Party Advisory | |
| cve@mitre.org | https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html | Exploit, Third Party Advisory | |
| cve@mitre.org | https://www.pandasecurity.com/usa/support/card?id=100063 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/SouhailHammou/Panda-Antivirus-LPE | Exploit, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html | Exploit, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.pandasecurity.com/usa/support/card?id=100063 | Vendor Advisory |
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:pandasecurity:panda_antivirus:*:*:*:*:*:*:*:*",
"matchCriteriaId": "08FE25D1-0BAA-4485-BB5B-38D5914D636F",
"versionEndExcluding": "18.07.03",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:pandasecurity:panda_antivirus_pro:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3617D2AB-18DF-4DC8-9A7F-7563A700084E",
"versionEndExcluding": "18.07.03",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:pandasecurity:panda_dome:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A6AE875C-BD9C-45A8-89B1-AF1328D61EC0",
"versionEndExcluding": "18.07.03",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:pandasecurity:panda_global_protection:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1781B26F-3ED4-4854-90F1-B3EB880EDEA5",
"versionEndExcluding": "18.07.03",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:pandasecurity:panda_gold_protection:*:*:*:*:*:*:*:*",
"matchCriteriaId": "798756C5-D99A-46FA-87F8-BA8E50EEC5E2",
"versionEndExcluding": "18.07.03",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:pandasecurity:panda_internet_security:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8A0CA4F5-BCA1-4272-ACC9-2D2941944978",
"versionEndExcluding": "18.07.03",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Insecure permissions of the section object Global\\PandaDevicesAgentSharedMemory and the event Global\\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, which leads to privilege escalation when the CmdLineExecute event is queued. This affects Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection, and Panda Internet Security."
},
{
"lang": "es",
"value": "Los permisos no seguros del objeto de la secci\u00f3n Global\\PandaDevicesAgentSharedMemory y el evento Global\\PandaDevicesAgentSharedMemoryChange en los productos de Panda antes de la versi\u00f3n 18.07.03, permiten que los atacantes pongan en cola un evento (como una cadena cifrada JSON) al servicio del sistema AgentSvc.exe, lo que lleva a una escalada de privilegios cuando el evento CmdLineExecute est\u00e1 en cola. Esto afecta a Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection y Panda Internet Security."
}
],
"id": "CVE-2019-12042",
"lastModified": "2024-11-21T04:22:09.413",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 10.0,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-05-23T14:29:07.673",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "https://github.com/SouhailHammou/Panda-Antivirus-LPE"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://www.pandasecurity.com/usa/support/card?id=100063"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "https://github.com/SouhailHammou/Panda-Antivirus-LPE"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://www.pandasecurity.com/usa/support/card?id=100063"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-732"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Vulnerability from fkie_nvd
Published
2009-12-07 17:30
Modified
2024-11-21 01:09
Severity ?
Summary
Panda Global Protection 2010, Internet Security 2010, and Antivirus Pro 2010 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| microsoft | windows_7 | * | |
| microsoft | windows_vista | * | |
| microsoft | windows_vista | * | |
| microsoft | windows_xp | * | |
| pandasecurity | panda_antivirus | 2010 | |
| pandasecurity | panda_global_protection | 2010 | |
| pandasecurity | panda_internet_security | 2010 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D56B932B-9593-44E2-B610-E4EB2143EB21",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:32_bit:*:*:*:*:*",
"matchCriteriaId": "CC3161FD-F631-405A-BE3A-0B78D5DCD7B2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:64-bit:*:*:*:*:*",
"matchCriteriaId": "C38B6FA8-58B3-4037-A4EE-B496F1657CAE",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:32-bit:*:*:*:*:*",
"matchCriteriaId": "ED232169-696C-4613-A803-28101AB43A49",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:pandasecurity:panda_antivirus:2010:*:pro:*:*:*:*:*",
"matchCriteriaId": "B907640D-8144-4D89-88F2-B4AF1735BDDE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:pandasecurity:panda_global_protection:2010:*:*:*:*:*:*:*",
"matchCriteriaId": "C7B2D903-A66F-4679-9DBA-1354A5917462",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:pandasecurity:panda_internet_security:2010:*:pro:*:*:*:*:*",
"matchCriteriaId": "1381C07F-3956-450A-8C87-58297DA942DA",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Panda Global Protection 2010, Internet Security 2010, and Antivirus Pro 2010 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs."
},
{
"lang": "es",
"value": "Panda Global Protection 2010, Internet Security 2010, y Antivirus Pro 2010 usa permisos d\u00e9biles (Todos: Control Total ) para los archivos product, lo que permite a usuarios locales obtener privilegios por reemplazamiento de ejecutables con programas troyanos."
}
],
"id": "CVE-2009-4215",
"lastModified": "2024-11-21T01:09:10.340",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 10.0,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2009-12-07T17:30:00.313",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/37373"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.pandasecurity.com/homeusers/support/card?id=80164\u0026idIdioma=2"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/archive/1/507811/100/0/threaded"
},
{
"source": "cve@mitre.org",
"url": "http://www.securitytracker.com/id?1023121"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.vupen.com/english/advisories/2009/3126"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54268"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://secunia.com/advisories/37373"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.pandasecurity.com/homeusers/support/card?id=80164\u0026idIdioma=2"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/archive/1/507811/100/0/threaded"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id?1023121"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "http://www.vupen.com/english/advisories/2009/3126"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54268"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-264"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
cve-2009-4215
Vulnerability from cvelistv5
Published
2009-12-07 17:00
Modified
2024-08-07 06:54
Severity ?
EPSS score ?
Summary
Panda Global Protection 2010, Internet Security 2010, and Antivirus Pro 2010 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs.
References
| ▼ | URL | Tags |
|---|---|---|
| http://www.securitytracker.com/id?1023121 | vdb-entry, x_refsource_SECTRACK | |
| http://secunia.com/advisories/37373 | third-party-advisory, x_refsource_SECUNIA | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/54268 | vdb-entry, x_refsource_XF | |
| http://www.pandasecurity.com/homeusers/support/card?id=80164&idIdioma=2 | x_refsource_CONFIRM | |
| http://www.vupen.com/english/advisories/2009/3126 | vdb-entry, x_refsource_VUPEN | |
| http://www.securityfocus.com/archive/1/507811/100/0/threaded | mailing-list, x_refsource_BUGTRAQ |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-07T06:54:09.983Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "1023121",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1023121"
},
{
"name": "37373",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/37373"
},
{
"name": "panda-directory-privilege-escalation(54268)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54268"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.pandasecurity.com/homeusers/support/card?id=80164\u0026idIdioma=2"
},
{
"name": "ADV-2009-3126",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2009/3126"
},
{
"name": "20091111 Panda Security Software Local Privilege Escalation",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://www.securityfocus.com/archive/1/507811/100/0/threaded"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2009-11-11T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Panda Global Protection 2010, Internet Security 2010, and Antivirus Pro 2010 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-10-10T18:57:01",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "1023121",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1023121"
},
{
"name": "37373",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/37373"
},
{
"name": "panda-directory-privilege-escalation(54268)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54268"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.pandasecurity.com/homeusers/support/card?id=80164\u0026idIdioma=2"
},
{
"name": "ADV-2009-3126",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2009/3126"
},
{
"name": "20091111 Panda Security Software Local Privilege Escalation",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://www.securityfocus.com/archive/1/507811/100/0/threaded"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2009-4215",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Panda Global Protection 2010, Internet Security 2010, and Antivirus Pro 2010 use weak permissions (Everyone: Full Control) for the product files, which allows local users to gain privileges by replacing executables with Trojan horse programs."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "1023121",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id?1023121"
},
{
"name": "37373",
"refsource": "SECUNIA",
"url": "http://secunia.com/advisories/37373"
},
{
"name": "panda-directory-privilege-escalation(54268)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/54268"
},
{
"name": "http://www.pandasecurity.com/homeusers/support/card?id=80164\u0026idIdioma=2",
"refsource": "CONFIRM",
"url": "http://www.pandasecurity.com/homeusers/support/card?id=80164\u0026idIdioma=2"
},
{
"name": "ADV-2009-3126",
"refsource": "VUPEN",
"url": "http://www.vupen.com/english/advisories/2009/3126"
},
{
"name": "20091111 Panda Security Software Local Privilege Escalation",
"refsource": "BUGTRAQ",
"url": "http://www.securityfocus.com/archive/1/507811/100/0/threaded"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2009-4215",
"datePublished": "2009-12-07T17:00:00",
"dateReserved": "2009-12-07T00:00:00",
"dateUpdated": "2024-08-07T06:54:09.983Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
cve-2019-12042
Vulnerability from cvelistv5
Published
2019-05-23 13:30
Modified
2024-08-04 23:10
Severity ?
EPSS score ?
Summary
Insecure permissions of the section object Global\PandaDevicesAgentSharedMemory and the event Global\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, which leads to privilege escalation when the CmdLineExecute event is queued. This affects Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection, and Panda Internet Security.
References
| ▼ | URL | Tags |
|---|---|---|
| https://github.com/SouhailHammou/Panda-Antivirus-LPE | x_refsource_MISC | |
| https://www.pandasecurity.com/usa/support/card?id=100063 | x_refsource_CONFIRM | |
| https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html | x_refsource_MISC |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T23:10:30.186Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/SouhailHammou/Panda-Antivirus-LPE"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.pandasecurity.com/usa/support/card?id=100063"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2019-05-14T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Insecure permissions of the section object Global\\PandaDevicesAgentSharedMemory and the event Global\\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, which leads to privilege escalation when the CmdLineExecute event is queued. This affects Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection, and Panda Internet Security."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-05-23T13:30:44",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/SouhailHammou/Panda-Antivirus-LPE"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.pandasecurity.com/usa/support/card?id=100063"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-12042",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Insecure permissions of the section object Global\\PandaDevicesAgentSharedMemory and the event Global\\PandaDevicesAgentSharedMemoryChange in Panda products before 18.07.03 allow attackers to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, which leads to privilege escalation when the CmdLineExecute event is queued. This affects Panda Antivirus, Panda Antivirus Pro, Panda Dome, Panda Global Protection, Panda Gold Protection, and Panda Internet Security."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/SouhailHammou/Panda-Antivirus-LPE",
"refsource": "MISC",
"url": "https://github.com/SouhailHammou/Panda-Antivirus-LPE"
},
{
"name": "https://www.pandasecurity.com/usa/support/card?id=100063",
"refsource": "CONFIRM",
"url": "https://www.pandasecurity.com/usa/support/card?id=100063"
},
{
"name": "https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html",
"refsource": "MISC",
"url": "https://rce4fun.blogspot.com/2019/05/panda-antivirus-local-privilege.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2019-12042",
"datePublished": "2019-05-23T13:30:44",
"dateReserved": "2019-05-13T00:00:00",
"dateUpdated": "2024-08-04T23:10:30.186Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}