144 matches found
Threat Outbreak Alert: Email Messages with Malicious Attachments on October 1, 2013
Medium Alert ID: 31084 First Published: 2013 October 1 19:21 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain documents for the recipient. The text in the email message attempts to convince the recipient to open the...
Upgrade Attack
Added: 09/30/2013 Background The LLMNR Local Link Multicast Name Resolution protocol is used to answer wpad requests sent by Microsoft Windows. A rogue WPAD server delivers a wpad.dat file to poisoned hosts forcing them to proxy web requests through the SAINT server. In addition, HTTP requests ar...
Upgrade Attack
Added: 09/30/2013 Background The LLMNR Local Link Multicast Name Resolution protocol is used to answer wpad requests sent by Microsoft Windows. A rogue WPAD server delivers a wpad.dat file to poisoned hosts forcing them to proxy web requests through the SAINT server. In addition, HTTP requests ar...
Threat Outbreak Alert: Fake Voice Messages Delivery Email Messages on September 25, 2013
Medium Alert ID: 30992 First Published: 2013 September 26 13:24 GMT Version: 1 Summary Cisco Security has detected significant activity related to Portuguese-language spam email messages that claim to contain a voice message for the recipient. The email message attempts to convince the recipient ...
Threat Outbreak Alert: Fake Xerox Scanned Attachment Email Messages on September 4, 2013
Medium Alert ID: 30653 First Published: 2013 September 4 19:23 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a scanned document from a Xerox WorkCentre device. The text in the email message attempts to convince the...
Open-FTPD 1.2 Arbitrary File Upload
This module exploits multiple vulnerabilities found in Open FTP server. The software contains an authentication bypass vulnerability and a arbitrary file upload vulnerability that allows a remote attacker to write arbitrary files to the file system as long as there is at least one user who has...
Threat Outbreak Alert: Fake UPS Parcel Notification Email Messages on August 21, 2013
Medium Alert ID: 30330 First Published: 2013 August 6 20:28 GMT Last Updated: 2013 August 21 13:47 GMT Version: 4 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a UPS parcel notification for the recipient. The text in the email messag...
Threat Outbreak Alert: Fake Payroll Document Delivery Email Messages on July 18, 2013
Medium Alert ID: 30144 First Published: 2013 July 19 13:03 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a payroll document attachment for the recipient. The text in the email message attempts to convince the recipient...
Threat Outbreak Alert: Fake Purchase Order Notification Email Messages on July 15, 2013
Medium Alert ID: 30092 First Published: 2013 July 15 19:50 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a purchase order notification for the recipient. The text in the email message attempts to convince the recipient...
Threat Outbreak Alert: Fake Document Sharing Email Messages on July 3, 2013
Medium Alert ID: 29948 First Published: 2013 July 5 13:18 GMT Version: 1 Summary Cisco Security has detected significant activity related to Portuguese-language spam email messages that claim to contain documents for the recipient. The text in the email message attempts to convince the recipient ...
Threat Outbreak Alert: Fake Sample Product Purchase Order Email Messages on July 1, 2013
Medium Alert ID: 29864 First Published: 2013 July 1 16:01 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product purchase order for the recipient. The text in the email message attempts to convince the recipient to op...
Threat Outbreak Alert: Malicious Attachment Email Messages on June 26, 2013
Medium Alert ID: 29804 First Published: 2013 June 26 17:32 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an attachment for the recipient. The text in the email message attempts to convince the recipient to open the...
Threat Outbreak Alert: Fake Product Order Inquiry Email Messages on June 25, 2013
Low Alert ID: 29778 First Published: 2013 June 25 13:58 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product order inquiry notification for the recipient. The text in the email message attempts to convince the...
Threat Outbreak Alert: Fake Tax Payment Attachment Email Messages on June 24, 2013
Medium Alert ID: 29772 First Published: 2013 June 25 12:51 GMT Version: 1 Summary Cisco Security has detected significant activity related to Spanish-language spam email messages that claim to contain a tax payment attachment for the recipient. The text in the email message attempts to convince t...
Threat Outbreak Alert: Fake Secure Message Notification Email Messages June 24, 2013
Medium Alert ID: 29765 First Published: 2013 June 24 16:07 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a secure message for the recipient. The text in the email message attempts to convince the recipient to open the...
Threat Outbreak Alert: Fake Product Sample Order Quotation Email Messages on June 22, 2013
Medium Alert ID: 29753 First Published: 2013 June 24 12:53 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product order quotation for the recipient. The text in the email message attempts to convince the recipient to...
CVE-2012-5188
Untrusted search path vulnerability in mora Downloader before 1.0.0.1 allows remote attackers to trigger the launch of a .exe file via unspecified vectors...
Design/Logic Flaw
Untrusted search path vulnerability in mora Downloader before 1.0.0.1 allows remote attackers to trigger the launch of a .exe file via unspecified vectors...
CVE-2012-5188
CVE-2012-5188 concerns mora Downloader before 1.0.0.1, where an untrusted search path can cause the launcher to execute a .exe via unspecified vectors. Multiple sources (NVD/Red Hat/JVN variants) confirm the flaw allows arbitrary code execution with the application’s privileges, tied to insecure ...
CVE-2012-1441
The Microsoft EXE file parser in eSafe 7.0.17.0 and Prevx 3.0 allows remote attackers to bypass malware detection via an EXE file with a modified value in any of several e fields. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurr...