CVE-2008-1471

CVE Database · CVE-2008-1471

CVE-2008-1471

· N/AModified

CVSS v3.1

N/A

EPSS

1.13%

Published

Mar 24, 2008

Modified

Apr 22, 2026

Public PoC / Exploit (1)

All weaponized →

Exploit-DBPanda Internet Security/AntiVirus+Firewall 2008 - 'CPoint.sys' Memory Corruption

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The cpoint.sys driver in Panda Internet Security 2008 and Antivirus+ Firewall 2008 allows local users to cause a denial of service (system crash or kernel panic), overwrite memory, or execute arbitrary code via a crafted IOCTL request that triggers an out-of-bounds write of kernel memory.

Weaknesses (CWE)

CWE-399

Affected Products (7)

microsoft · windows-nt

microsoft · windows_2000

microsoft · windows_vista

microsoft · windows_xp

panda · panda_antivirus_and_firewallvulnerable

panda · panda_internet_securityvulnerable

References (18)

http://secunia.com/advisories/29311

Vendor Advisory