Panda online virus scanner updated
Panda Security has updated its ActiveScan online virus scanner, fixing two critical vulnerabilities. According to a security advisory by Karol Wiesek, a buffer overflow could be triggered in the update function for an ActiveX control (as2guiie.dll) for Internet Explorer, allowing injection and execution of malicious code. In addition, it was also previously possible to install arbitrary CAB files on a system using crafted websites.
- Panda ActiveScan 2.0 remote code execution, Exploit description by Karol Wiesek