Ashraf Alharbi

**Nome do Software Vulnerável e Versões Afetadas** Panda Global Protection 2016 versões anteriores à 16.1.2 Panda Antivirus Pro 2016 versões anteriores à 16.1.2 Panda Small Business Protection versões anteriores à 16.1.2 Panda Internet Security 2016 versões anteriores à 16.1.2 **Descrição** O PSEvents.exe em múltiplos produtos da Panda Security é executado a cada hora com privilégios de SYSTEM e carrega arquivos DLL de um diretório gravável pelo usuário sem a devida validação. Um atacante com acesso de baixos privilégios que consiga gravar arquivos DLL no diretório monitorado pode obter execução arbitrária de código com privilégios de SYSTEM. **Recomendações** Atualize o Panda Global Protection 2016 para a versão 16.1.2 ou posterior. Atualize o Panda Antivirus Pro 2016 para a versão 16.1.2 ou posterior. Atualize o Panda Small Business Protection para a versão 16.1.2 ou posterior. Atualize o Panda Internet Security 2016 para a versão 16.1.2 ou posterior.

Name of the Vulnerable Software and Affected Versions: LAquis SCADA versions 4.1.0.3870 and prior Description: The issue is related to out-of-bounds read vulnerabilities in the LQS file parsing functionality of LAquis SCADA, which may allow remote code execution. This is due to a buffer overflow in memory. The vulnerability can be exploited by a remote attacker to execute arbitrary code. Recommendations: For LAquis SCADA versions 4.1.0.3870 and prior, consider disabling the LQS file parsing functionality until a patch is available to prevent potential remote code execution. Restrict access to the vulnerable component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Foxit Reader version 8.3.1.21155 **Description** This issue allows remote attackers to disclose sensitive information on vulnerable installations. User interaction is required, where the target must visit a malicious page or open a malicious file. The flaw exists within the parsing of `LZWDecode` filters due to the lack of proper validation of user-supplied data. This can result in a read past the end of an allocated object, potentially allowing an attacker to execute code in the context of the current process when combined with other vulnerabilities. **Recommendations** For Foxit Reader version 8.3.1.21155, consider disabling the `LZWDecode` filter as a temporary workaround until a patch is available. Restrict access to potentially malicious files and web pages to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Foxit Reader version 8.3.1.21155 **Description** This issue allows remote attackers to disclose sensitive information on vulnerable installations. User interaction is required, where the target must visit a malicious page or open a malicious file. The flaw exists within the parsing of Image filters due to the lack of proper validation of user-supplied data, resulting in a read past the end of an allocated object. An attacker can leverage this, in conjunction with other issues, to execute code in the context of the current process. **Recommendations** For Foxit Reader version 8.3.1.21155, consider disabling the Image filter parsing functionality as a temporary workaround until a patch is available. Restrict access to potentially malicious files or web pages to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.