CVE-2006-5967: Race Condition
First published: Fri Nov 17 2006(Updated: )
Race condition in Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to cause memory corruption and execute arbitrary code via unknown vectors related to multiple invocations of the Analizar method in the ActiveScan.1 ActiveX control, which is not thread safe.
Credit: PSIRT-CNA@flexerasoftware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Panda ActiveScan | =5.53.00 | |
| Panda ActiveScan | =5.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2006-5967?
CVE-2006-5967 is considered to have a moderate severity level due to the potential for remote code execution.
How do I fix CVE-2006-5967?
To mitigate CVE-2006-5967, upgrade to Panda ActiveScan version 5.54.01 or later.
Who is affected by CVE-2006-5967?
Users of Panda ActiveScan versions 5.0 and 5.53.00 are specifically affected by CVE-2006-5967.
What type of vulnerability is CVE-2006-5967?
CVE-2006-5967 is a race condition vulnerability that can lead to memory corruption.
What are the potential impacts of CVE-2006-5967?
The potential impacts of CVE-2006-5967 include memory corruption and execution of arbitrary code by remote attackers.
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/last-modified-date
- agent/references
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-historical
- collector/nvd-index
- vendor/panda
- canonical/panda activescan
- version/panda activescan/5.53.00
- version/panda activescan/5.0