Panda Antivirus And Firewall vulnerabilities

CVE-2008-1471 [HIGH] CWE-399 CVE-2008-1471: The cpoint.sys driver in Panda Internet Security 2008 and Antivirus+ Firewall 2008 allows local user The cpoint.sys driver in Panda Internet Security 2008 and Antivirus+ Firewall 2008 allows local users to cause a denial of service (system crash or kernel panic), overwrite memory, or execute arbitrary code via a crafted IOCTL request that triggers an out-of-bounds write of kernel memory.

CVE-2007-1673 [HIGH] CWE-399 CVE-2007-1673: unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of service (infinite loop) via a ZOO archive with a direntry structure that points to a previous file.