Title: Panda Anti-Virus ZOO Archive Decompression Overflow
Nov 29, 2005
A remote overflow exists in Panda Antivirus. The 'pskcmp.dll' library fails to perform proper bounds checking resulting in a heap-based buffer overflow. With a specially crafted ZOO archive, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.
Remote / Network Access
Loss of Integrity
Currently, there are no known workarounds or upgrades to correct this issue. However, Panda Software has released a patch (via automatic update) to address this vulnerability.