Threat Encyclopedia

Privilege Gain Vulnerability for Panda Endpoint Agent

description-logoDescription

Panda Endpoint Administration Agent before 7.50.00, as used in Panda Security for Business products for Windows, uses a weak ACL for the Panda Security/WaAgent directory and sub-directories, which allows local users to gain SYSTEM privileges by modifying an executable module.

affected-products-logoAffected Products

Panda Endpoint Agent

CVE References

CVE-2016-3943