CVE-2018-14581

Redgate .NET Reflector before 10.0.7.774 and SmartAssembly before 6.12.5 allow attackers to execute code by decompiling a compiled .NET object such as a DLL or EXE file with a specific embedded resource file. Recent assessments: zeroSteiner at March 20, 2020 12:43pm UTC reported: A crafted .RESX...

CVE-2018-8821

windrvr1260.sys in Jungo DriverWizard WinDriver 12.6.0 allows attackers to cause a denial of service BSOD via a crafted .exe file...

DEWESoft X3 SP1 Arbitrary Code Execution Vulnerability

DEWESoft X3 SP1 is a device for industrial measurements. A security vulnerability exists in the RunExeFile.exe file in the DEWESoft X3 SP1 64-bit device, which originates when the program requires authentication for a session on TCP port 1999. A remote attacker could exploit the vulnerability to...

DEBIAN-CVE-2017-17052

The mminit function in kernel/fork.c in the Linux kernel before 4.12.10 does not clear the -exefile member of a new process's mmstruct, allowing a local attacker to achieve a use-after-free or possibly have unspecified other impact by running a specially crafted program...

CVE-2017-15651

PRTG Network Monitor 17.3.33.2830 allows remote authenticated administrators to execute arbitrary code by uploading a .exe file and then proceeding in spite of the error message...

CVE-2017-15651

PRTG Network Monitor 17.3.33.2830 allows remote authenticated administrators to execute arbitrary code by uploading a .exe file and then proceeding in spite of the error message...

HTTP Protocol Remote Code Execution

A remote code execution vulnerability exists in HTTP protocol. By sending a request containing a specially crafted EXE file, a remote attacker can exploit this vulnerability in order to execute arbitrary code on the effected system...

ownCloud: Exploiting unauthenticated encryption mode

The owncloud file storage encryption uses the AES encryption algorithm in CFB mode without any authentication. The encryption module is advertised as a way to use a potentially untrusted external storage 1. Let's assume someone uses owncloud with the encryption module and an untrusted storage and...

ManageEngine Desktop Central StatusUpdate Arbitrary File Upload

This module exploits an arbitrary file upload vulnerability in ManageEngine DesktopCentral v7 to v9 build 90054 including the MSP versions. A malicious user can upload a JSP file into the web root without authentication, leading to arbitrary code execution as SYSTEM. Some early builds of version ...

Threat Outbreak Alert: Email Messages with Malicious Attachments on May 28, 2014

Medium Alert ID: 34407 First Published: 2014 May 29 13:49 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that contain a malicious attachment for the recipient. The text in the email message attempts to convince the recipient to open the...

Threat Outbreak Alert: Fake Personal Note Email Messages on May 28, 2014

Medium Alert ID: 34389 First Published: 2014 May 28 17:39 GMT Version: 1 Summary Cisco Security has detected significant activity related to German-language spam email messages that claim to contain a personal note for the recipient. The text in the email message attempts to convince the recipien...

Threat Outbreak Alert: Email Messages with Malicious Attachments on May 28, 2014

Medium Alert ID: 34390 First Published: 2014 May 28 16:20 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that contain an attachment relating to a purchase order payment for the recipient. The email message attempts to convince the recipient ...

Threat Outbreak Alert: Fake Bank Account Deposit Notification Email Messages on May 21, 2014

Medium Alert ID: 34334 First Published: 2014 May 22 13:04 GMT Last Updated: 2014 May 23 18:40 GMT Version: 2 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a bank transfer slip for the recipient. The text in the email message attempts...

Threat Outbreak Alert: Fake Court Apperance Notice Email Messages on May 13, 2014

Medium Alert ID: 34172 First Published: 2014 May 8 20:44 GMT Last Updated: 2014 May 14 13:17 GMT Version: 2 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a court appearance notice for the recipient. The text in the email message...

Threat Outbreak Alert: Fake Payment Notification Email Messages on April 30, 2014

Medium Alert ID: 34021 First Published: 2014 May 1 13:41 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a swift payment notification for the recipient. The text in the email message attempts to convince the recipient to...

Threat Outbreak Alert: Email Messages with Malicious Attachment on April 15, 2014.

Medium Alert ID: 33819 First Published: 2014 April 16 11:29 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages with a blank message body and a document attached for the recipient. However, the .zip attachment contains a malicious .exe file that,...

Threat Outbreak Alert: Fake Account Payment Transfer Notification Email Messages on April 9, 2014

Medium Alert ID: 33736 First Published: 2014 April 10 13:31 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claims to contain account payment transfer notification for the recipient. The email message attempts to convince the recipient t...

Threat Outbreak Alert: Email Messages with Malicious Attachments on March 31, 2014

Medium Alert ID: 33580 First Published: 2014 March 31 17:14 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that contain an attachment for the recipient. The email message attempts to convince the recipient to open the attachment for details...

Threat Outbreak Alert: Fake Tax Information Request Email Messages on March 31, 2014

Medium Alert ID: 33579 First Published: 2014 March 31 15:42 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a request for tax information for the recipient. The text in the email message attempts to convince the recipien...

Threat Outbreak Alert: Fake Draft Attachment Email Messages on March 21, 2014

Medium Alert ID: 33469 First Published: 2014 March 24 15:26 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a draft for the recipient. The text in the email message attempts to convince the recipient to open the attachme...