23 matches found
PT-2026-49015
Name of the Vulnerable Software and Affected Versions Avast Antivirus versions prior to VPS 25021208 AVG Antivirus versions prior to VPS 25021208 Norton Antivirus versions prior to VPS 25021208 Avast One versions prior to VPS 25021208 Avast Business Antivirus versions prior to VPS 25021208...
CVE-2025-47939
TYPO3 is an open source, PHP based web content management system. By design, the file management module in TYPO3’s backend user interface has historically allowed the upload of any file type, with the exception of those that are directly executable in a web server context. This lack of restrictio...
K7985: ClamAV clamav-milter vulnerability - CVE-2007-4560
Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...
A Look at Scan4You and the Counter Antivirus Service Landscape
The concept of antivirus AV scanning within IT security is simple and effective. These programs, which have become part and parcel of typical infrastructure and data protection strategies, scan enterprise networks for known malware signatures and other processes associated with suspicious hacker...
Intel Processors Now Allows Antivirus to Use Built-in GPUs for Malware Scanning
Global chip-maker Intel on Tuesday announced two new technologies—Threat Detection Technology TDT and Security Essentials—that not only offer hardware-based built-in security features across Intel processors but also improve threat detection without compromising system performance. Intel's Threat...
Ian Dunn: Formula injection via CSV exports in WordCamp Talks plugin
The WordCamp Talks plugin does not attempt to sanitize CSV exports, which can lead to spreadsheet formula injection via malicious inputs. POC ======== Submit a new talk with the title of =1+1. Visit the All Talks page /wp-admin/edit.php?posttype=talks Click the CSV Export link Open the downloaded...
How To Keep Your Android Phone Secure
As the number of threats is on the rise, Android platform is no longer safe, which isn't a surprise to anyone. Most of us are usually worried more about the security of our desktops or laptops and forget to think about the consequences our smartphones can make if compromised or stolen. Unlike...
The vulnerability of the Kaspersky Anti-Virus antivirus protection allows a hacker to trigger a service failure or execute arbitrary code.
The vulnerability of Kaspersky Anti-Virus lies in a numerical overflow condition. Exploiting this vulnerability allows an attacker to cause service interruptions or execute arbitrary code using VB6 files during the antivirus system’s scanning process...
The vulnerability of the Kaspersky Anti-Virus antivirus protection allows a hacker to trigger a service failure or execute arbitrary code.
The vulnerability of the Kaspersky Anti-Virus antivirus protection system is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure or execute arbitrary code during the antivirus protection system’s scanning...
FTGate 2009 Build 6.4.00 - Multiple Vulnerabilities
Exploit for php platform in category web applications Vendor: ================================ www.ftgate.com Product: ======================================== FTGate 2009 SR3 May 13 2010 Build 6.4.00 Vulnerability Type: ================================= Cross site request forgery CSRF CVE...
FTGate 2009 SR3 Cross Site Request Forgery
Credits: hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/AS-FTGATE-2009-CSRF.txt Vendor: ================================ www.ftgate.com Product: ======================================== FTGate 2009 SR3 May 13 2010 Build 6.4.00 Vulnerability...
Mailspect Control Panel 4.0.5 - Multiple Vulnerabilities
Mailspect Control Panel version 4.0.5 suffers from remote code execution, arbitrary file read, and cross site scripting vulnerabilities. Document Title: ============ Mailspect Control Panel version 4.0.5 Multiple Vulnerabilities Release Date: =========== June 21, 2014 Product & Service...
icap-info NSE Script
Tests a list of known ICAP service names and prints information about any it detects. The Internet Content Adaptation Protocol ICAP is used to extend transparent proxy servers and is generally used for content filtering and antivirus scanning. Example Usage nmap -p 1344 --script icap-info Script...
Malicious File Upload
The application server accepted a vbscript file, an HTML file containing JavaScript, and the EICAR test virus as allowed attachments. This means that an attacker could submit a malicious file to the backend, where the file might be launched by another internal RIM employee if they click and open...
ESET Smart Security 4.2 / NOD32 Antivirus 4.2 (x32-x64) LZH parsing PoC
Exploit for windows platform in category dos / poc ======================================================================= ESET Smart Security 4.2 / NOD32 Antivirus 4.2 x32-x64 LZH parsing PoC ======================================================================= ESET Smart Security 4.2 and NOD3...
F-Secure Products Malware Detection Bypass Vulnerability - Windows
F-Secure Product is prone to a malware detection bypass vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SOL8420 - ClamAV buffer overflow vulnerabilities - CVE-2007-6335, CVE-2007-6336
The FirePass controller can be configured to provide antivirus scanning of files uploaded through Portal Access. The software used to scan uploaded files is ClamAV open source software, which is enabled by selecting the Enable Standalone Virus Scanner button on the Antivirus tab of the Portal...
F-Secure Anti-Virus for Windows system32 Directory Crafted File Detection Bypass
The remote host is running F-Secure Anti-Virus for Windows Servers. According to its version, the installation of this software on the remote host may allow an attacker by bypass antivirus scanning by placing a specially crafted archive or packed executable into the 'system32' folder. Note that...
SOL7983 - ClamAV NULL dereference vulnerability - CVE-2007-4510
The FirePass controller can be configured to provide anti-virus scanning of files uploaded through Portal Access through the ClamAV open source software. Scanning is configured on the Antivirus tab of the Portal Access Content Inspection page, through the Enable Standalone virus Scanner option...
SOL6795 - ClamAV CHM Chunk Name Length DoS Vulnerability - CVE-2006-5295
The FirePass controller can be configured to provide anti-virus scanning of files uploaded through Portal Access using the ClamAV open source software. A vulnerability in ClamAV 0.88.4 and earlier versions could allow a remote attacker to crash the scanner process using a specially crafted...