This host is installed with Panda Antivirus and is prone to heap based buffer overflow vulnerability.

Successful exploitation will allow attackers to cause a heap-based buffer overflow by sending a specially crafted IOCTL request and execute arbitrary code on the system with kernel-level privileges. Impact Level: System/Application

Apply the hotfix 'hft131306s24_r1'. For more details refer link, http://www.pandasecurity.com NOTE: Please ignore the warning if the update is already applied.

Flaw exist due to improper bounds checking by the PavTPK.sys kernel mode driver.

Panda Antivirus Pro 2014 13.01.01

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

• http://osvdb.com/110191
• http://packetstormsecurity.com/files/127948/Panda-Security-2014-Privilege-Escalation.html
• http://xforce.iss.net/xforce/xfdb/95382

---

Updated on 2015-03-25