CVE-2000-0264
published 2000-04-17CVE-2000-0264: Panda Security 3.0 with registry editing disabled allows users to edit the registry and gain privileges by directly executing a .reg file or using other…
PriorityP413low2.1CVSS 2.0
AVLACLAuNCNIPAN
EXPLOIT
EPSS
0.72%
49.2th percentile
Panda Security 3.0 with registry editing disabled allows users to edit the registry and gain privileges by directly executing a .reg file or using other methods.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| panda | panda_security | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Seattle Lab Mail (SLmail) 5.5 - POP3 'PASS' Remote Buffer Overflow (1)
exploitdb·2004-11-18
CVE-2003-0264 Seattle Lab Mail (SLmail) 5.5 - POP3 'PASS' Remote Buffer Overflow (1)
Seattle Lab Mail (SLmail) 5.5 - POP3 'PASS' Remote Buffer Overflow (1)
---
#########################################################
# #
# SLmail 5.5 POP3 PASS Buffer Overflow #
# Discovered by : Muts #
# Coded by : Muts #
# www.offsec.com #
# Plain vanilla stack overflow in the PASS command #
# #
#########################################################
# D:\Projects\BO>SLmail-5.5-POP3-PASS.py #
#########################################################
# D:\Projects\BO>nc -v 192.168.1.167 4444 #
# localhost.lan [192.168.1.167] 4444 (?) open #
# Microsoft Windows 2000 [Version 5.00.2195] #
# (C) Copyright 1985-2000 Microsoft Corp. #
# C:\Program Files\SLmail\System> #
#########################################################
import struct
import socket
print "\n\n######################
Exploit-DB
Panda Security 3.0 - Multiple Vulnerabilities
exploitdb·2000-04-17
CVE-2000-0264 Panda Security 3.0 - Multiple Vulnerabilities
Panda Security 3.0 - Multiple Vulnerabilities
---
source: https://www.securityfocus.com/bid/1119/info
Panda Security is a user management application for Windows 9x. With it, certain functions can be prohibited for specific users.
One of the restrictive policies possible is to disable registry editing. However, even with this feature activated, any user can edit the registry by either executing a *.reg file or renaming and then executing regedit.exe. As the restriction settings for Panda are stored in the registry, this weakness negates the effectiveness of the rest of the Panda software.
In addition, users can uninstall Panda Security through the Add/Remove Programs applet in the Control Panel. An error message will appear when the user attempts to uninstall Panda Security. However u
No writeups or analysis indexed.
http://updates.pandasoftware.com/docs/us/Avoidvulnerability.ziphttp://www.securityfocus.com/bid/1119http://www.securityfocus.com/templates/archive.pike?list=1&msg=38FB45F2.550EA000%40teleline.eshttp://updates.pandasoftware.com/docs/us/Avoidvulnerability.ziphttp://www.securityfocus.com/bid/1119http://www.securityfocus.com/templates/archive.pike?list=1&msg=38FB45F2.550EA000%40teleline.es
2000-04-17
Published