Start the year on the right foot

Renew your protection now with this limited-time offer

-50%Renew my protection

*Home users only

Get 50% discount!

Discover the plan that suits you best!

-50%See offer

Get 50% discount!

Discover the plan that suits you best!

This Christmas will be different

but we want to continue helping you protect your loved ones

-50%Renew my protection*

*Home users only

This Christmas will be different

but we want to continue helping you protect your loved ones

-50%View offer

Get 40% discount! Discover the plan that suits you best!

See offer

Get 50% discount! Discover the plan that suits you best!

See offer

Get 40% discount! Discover the plan that suits you best!

See offer

Renew and get 50% off*

Only available for 48 hours!

::

*For home users only

Renew at a discount
::

Renew and get 50% off*

Renew
*Home users only

*For home users only Renew and get 50% off*

::
Renew

Special offer: Renew and get 50% off**

Only available for 48 hours!

::

*For home users only

Renew at a discount

*For home users only Special offer: Renew and get 50% off*

::04
Renew

Are you a WatchGuard Partner or customer and need help with Panda products?

Welcome to Support!

Get 50% discount! Discover the plan that suits you best!

Click here!

Hello!

You’re about to visit our web page in English
Would you like to continue?

Yes, I want to visit the web page in English No, I want to visit the web page in

If this is not what you’re looking for,

Visit our Welcome Page!

Technical Support

Need help?

 

Privilege escalation vulnerability in PSEvents.exe with Panda 2016 products

Information applies to:

Products
Panda Antivirus Pro 2016Panda Global Protection 2016Panda Gold Protection 2016
Panda Internet Security 2016Small Business Protection

Situation

A vulnerability in the Panda 2016 products that allows the execution of code with elevated permissions has been detected in Small Business Protection and Panda 2016 products. The PSEvents.exe process is periodically run with elevated permissions and has dependencies of libraries located both in the default directory as well as in other system libraries. As the USERS group has Write permissions over the folder where the PSEvent.exe process is run and because the system first looks for libraries run by this process in the execution folder, it may be possible to create a malicious library in the execution folder that will replace one of the libraries installed in other folders. Therefore, a user could run malicious code with SYSTEM privileges.

Solution

To solve the local privilege escalation issue, Panda Security has developed a hotfix for the affected products.

How to apply the hotfix

Follow the steps below to apply the solution:

  1. Download the hotfix by clicking the Download button:

  2. Run the hotfix on the computer and verify that the folder %ProgramData%\Panda Security\Panda Devices Agent\Downloads has Read only permissions for the USERS group.

Panda Security would like to thank Security-Assessment.com and the researcher investigador Ashraf Alharbi for their continous efforts in improving security.

Help nº- 20160621 100053 EN

Have you resolved your query with this article?

yes no

Thanks for your answer


Why didn't you find it helpful?


The instructions are too complex.
The instructions are too long.
The instructions don't work.
I'd rather have a video.
Other reasons.




Talk to a technician!

 

Business hours: Mondays-Fridays 9:00 to 18:00 CET

Outside business hours, please use the online form.





ALWAYS ONLINE TO HELP YOU TWITTER FORUM RATE US CHAT
ALWAYS ONLINE TO HELP YOU TWITTER FORUM RATE US CHAT