CVE-2008-1471 - Vulnerability Details - OpenCVE

The cpoint.sys driver in Panda Internet Security 2008 and Antivirus+ Firewall 2008 allows local users to cause a denial of service (system crash or kernel panic), overwrite memory, or execute arbitrary code via a crafted IOCTL request that triggers an out-of-bounds write of kernel memory.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Microsoft	Windows-nt Windows 2000 Windows Vista Windows Xp
Panda	Panda Antivirus And Firewall Panda Internet Security

Configuration 1 [-]

AND

OR	cpe:2.3:o:microsoft:windows-nt:vista::x32:::::
	cpe:2.3:o:microsoft:windows-nt:xp::x32:::::
	cpe:2.3:o:microsoft:windows_2000:::pro:::::*
	cpe:2.3:o:microsoft:windows_vista:::x64:::::*
	cpe:2.3:o:microsoft:windows_xp:::x64:::::*

OR	cpe:2.3:a:panda:panda_antivirus_and_firewall:2008:::::::*
	cpe:2.3:a:panda:panda_internet_security:2008:::::::*

No data.

References

Link	Providers
https://www.spirityenterprise.com/mdr-for-endpoint
http://secunia.com/advisories/29311
http://www.pandasecurity.com/homeusers/support/card?id=41231&idIdioma=2&ref=ProdExp
http://www.pandasecurity.com/homeusers/support/card?id=41337&idIdioma=2&ref=ProdExp
http://www.securityfocus.com/archive/1/489292/100/0/threaded
http://www.securityfocus.com/bid/28150
http://www.securitytracker.com/id?1019568
http://www.trapkit.de/advisories/TKADV2008-001.txt
http://www.vupen.com/english/advisories/2008/0801/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41079

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-03-24T22:00:00.000Z

Updated: 2024-08-07T08:24:42.857Z

Reserved: 2008-03-24T00:00:00.000Z

Link: CVE-2008-1471

Vulnrichment

No data.

NVD

Status : Modified

Published: 2008-03-24T22:44:00.000

Modified: 2026-04-23T00:35:47.467

Link: CVE-2008-1471

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-03-10T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "The cpoint.sys driver in Panda Internet Security 2008 and Antivirus+ Firewall 2008 allows local users to cause a denial of service (system crash or kernel panic), overwrite memory, or execute arbitrary code via a crafted IOCTL request that triggers an out-of-bounds write of kernel memory."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-11T19:57:01.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "29311", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/29311"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.pandasecurity.com/homeusers/support/card?id=41337&idIdioma=2&ref=ProdExp"}, {"name": "ADV-2008-0801", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/0801/references"}, {"name": "28150", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/28150"}, {"tags": ["x_refsource_MISC"], "url": "http://www.trapkit.de/advisories/TKADV2008-001.txt"}, {"name": "1019568", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1019568"}, {"name": "20080308 [TKADV2008-001] Panda Internet Security/Antivirus+Firewall 2008 cpoint.sys Kernel Driver Memory Corruption Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/489292/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.pandasecurity.com/homeusers/support/card?id=41231&idIdioma=2&ref=ProdExp"}, {"name": "panda-antivirus-cpointsys-priv-escalation(41079)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41079"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-1471", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The cpoint.sys driver in Panda Internet Security 2008 and Antivirus+ Firewall 2008 allows local users to cause a denial of service (system crash or kernel panic), overwrite memory, or execute arbitrary code via a crafted IOCTL request that triggers an out-of-bounds write of kernel memory."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "29311", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/29311"}, {"name": "http://www.pandasecurity.com/homeusers/support/card?id=41337&idIdioma=2&ref=ProdExp", "refsource": "CONFIRM", "url": "http://www.pandasecurity.com/homeusers/support/card?id=41337&idIdioma=2&ref=ProdExp"}, {"name": "ADV-2008-0801", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/0801/references"}, {"name": "28150", "refsource": "BID", "url": "http://www.securityfocus.com/bid/28150"}, {"name": "http://www.trapkit.de/advisories/TKADV2008-001.txt", "refsource": "MISC", "url": "http://www.trapkit.de/advisories/TKADV2008-001.txt"}, {"name": "1019568", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1019568"}, {"name": "20080308 [TKADV2008-001] Panda Internet Security/Antivirus+Firewall 2008 cpoint.sys Kernel Driver Memory Corruption Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/489292/100/0/threaded"}, {"name": "http://www.pandasecurity.com/homeusers/support/card?id=41231&idIdioma=2&ref=ProdExp", "refsource": "CONFIRM", "url": "http://www.pandasecurity.com/homeusers/support/card?id=41231&idIdioma=2&ref=ProdExp"}, {"name": "panda-antivirus-cpointsys-priv-escalation(41079)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41079"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T08:24:42.857Z"}, "title": "CVE Program Container", "references": [{"name": "29311", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/29311"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.pandasecurity.com/homeusers/support/card?id=41337&idIdioma=2&ref=ProdExp"}, {"name": "ADV-2008-0801", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2008/0801/references"}, {"name": "28150", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/28150"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.trapkit.de/advisories/TKADV2008-001.txt"}, {"name": "1019568", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1019568"}, {"name": "20080308 [TKADV2008-001] Panda Internet Security/Antivirus+Firewall 2008 cpoint.sys Kernel Driver Memory Corruption Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/489292/100/0/threaded"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.pandasecurity.com/homeusers/support/card?id=41231&idIdioma=2&ref=ProdExp"}, {"name": "panda-antivirus-cpointsys-priv-escalation(41079)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41079"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-1471", "datePublished": "2008-03-24T22:00:00.000Z", "dateReserved": "2008-03-24T00:00:00.000Z", "dateUpdated": "2024-08-07T08:24:42.857Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows-nt:vista:*:x32:*:*:*:*:*", "matchCriteriaId": "8C7E0F58-4948-4785-816F-6B2DC5FEA18E", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows-nt:xp:*:x32:*:*:*:*:*", "matchCriteriaId": "EEC92A11-2DA9-45B0-8887-876126DA6940", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows_2000:*:*:pro:*:*:*:*:*", "matchCriteriaId": "26CF0F23-E9B6-415F-868A-C883EF11F389", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:x64:*:*:*:*:*", "matchCriteriaId": "1DD1D5ED-FE7C-4ADF-B3AF-1F13E51B4FB5", "vulnerable": false}, {"criteria": "cpe:2.3:o:microsoft:windows_xp:*:*:x64:*:*:*:*:*", "matchCriteriaId": "ACF75FC8-095A-4EEA-9A41-C27CFF3953FB", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:panda:panda_antivirus_and_firewall:2008:*:*:*:*:*:*:*", "matchCriteriaId": "C4D1D99A-22AA-4FC6-ADEF-2759EB96CF5A", "vulnerable": true}, {"criteria": "cpe:2.3:a:panda:panda_internet_security:2008:*:*:*:*:*:*:*", "matchCriteriaId": "045DD35A-DBE0-412F-AEE0-CA333328A59D", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The cpoint.sys driver in Panda Internet Security 2008 and Antivirus+ Firewall 2008 allows local users to cause a denial of service (system crash or kernel panic), overwrite memory, or execute arbitrary code via a crafted IOCTL request that triggers an out-of-bounds write of kernel memory."}, {"lang": "es", "value": "El dispositivo cpoint.sys driver en Panda Internet Security 2008 y Antivirus+ Firewall 2008 permite a usuarios locales provocar una denegaci\u00f3n de servicio (ca\u00edda del sistema o kernel panic), sobrescribir memoria o ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de una petici\u00f3n IOCTL manipulada que dispara una escritura en memoria fuera de l\u00edmite."}], "id": "CVE-2008-1471", "lastModified": "2026-04-23T00:35:47.467", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2008-03-24T22:44:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/29311"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.pandasecurity.com/homeusers/support/card?id=41231&idIdioma=2&ref=ProdExp"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.pandasecurity.com/homeusers/support/card?id=41337&idIdioma=2&ref=ProdExp"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/489292/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/28150"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1019568"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch"], "url": "http://www.trapkit.de/advisories/TKADV2008-001.txt"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2008/0801/references"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41079"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/29311"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.pandasecurity.com/homeusers/support/card?id=41231&idIdioma=2&ref=ProdExp"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.pandasecurity.com/homeusers/support/card?id=41337&idIdioma=2&ref=ProdExp"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/489292/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/28150"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id?1019568"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch"], "url": "http://www.trapkit.de/advisories/TKADV2008-001.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2008/0801/references"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41079"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-399"}], "source": "nvd@nist.gov", "type": "Primary"}]}