CVE-2008-1471

Name of the Vulnerable Software and Affected Versions Panda Internet Security versions 2008 Panda Antivirus+ Firewall versions 2008

Description The issue allows local users to cause a denial of service, overwrite memory, or execute arbitrary code via a crafted IOCTL request. This request triggers an out-of-bounds write of kernel memory.

Recommendations For Panda Internet Security version 2008, consider disabling the cpoint.sys driver as a temporary workaround until a patch is available. For Panda Antivirus+ Firewall version 2008, restrict access to the cpoint.sys driver to minimize the risk of exploitation.