CVE-2014-5307

Heap-based buffer overflow in the PavTPK.sys kernel mode driver of Panda Security 2014 products before hft131306s24_r1 allows local users to gain privileges via a crafted argument to a 0x222008 IOCTL call.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:pandasecurity:panda_av_pro_2014:13.01.01:*:*:*:*:*:*:*
cpe:2.3:a:pandasecurity:panda_global_protection_2014:7.01.01:*:*:*:*:*:*:*
cpe:2.3:a:pandasecurity:panda_internet_security_2014:19.01.01:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-08-26 14:55

Updated : 2024-02-28 12:20


NVD link : CVE-2014-5307

Mitre link : CVE-2014-5307

CVE.ORG link : CVE-2014-5307


JSON object : View

Products Affected

pandasecurity

  • panda_global_protection_2014
  • panda_av_pro_2014
  • panda_internet_security_2014
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer