Lucene search
K

176 matches found

Kitploit
Kitploit
added 2016/08/20 2:30 p.m.16 views

Manalyze - A static analyzer for PE executables

Manalyzer is a free service which performs static analysis on PE executables to detect undesirable behavior. A static analyzer for PE files Manalyze was written in C++ for Windows and Linux and is released under the terms of the GPLv3 license . It is a robust parser for PE files with a flexible...

7.1AI score
Exploits0References3
n0where
n0where
added 2016/05/19 3:13 p.m.34 views

PE Executables Static Analyzer: Manalyze

PE Executables Static Analyzer Manalyze performs static analysis on PE files, in order to detect signs of malicious behavior. It is a versatile tool with a robust parser and a set of built-in tests, but can also be extended easily.Manalyze was written in C++ for Windows and Linux and is released...

7.2AI score
Exploits0References1
NVD
NVD
added 2016/04/12 2:0 a.m.16 views

CVE-2016-3986

Avast allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary code via a crafted PE file, related to authenticode parsing...

9.3CVSS7.9AI score0.07881EPSS
Exploits2References3
Prion
Prion
added 2016/04/12 2:0 a.m.14 views

Memory corruption

Avast allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary code via a crafted PE file, related to authenticode parsing...

9.3CVSS8.3AI score0.07881EPSS
Exploits2References3
Cvelist
Cvelist
added 2016/04/08 4:0 p.m.21 views

CVE-2016-3986

Avast allows remote attackers to cause a denial of service memory corruption and possibly execute arbitrary code via a crafted PE file, related to authenticode parsing...

7.9AI score0.07881EPSS
Exploits2References3
CVE
CVE
added 2016/04/08 4:0 p.m.50 views

CVE-2016-3986

CVE-2016-3986 affects Avast Antivirus and is triggered by a crafted PE file, exploiting the authenticode parsing path to cause memory corruption and potentially execute arbitrary code. The vulnerability’s impact is a denial-of-service with memory corruption (and possible code execution). Affected...

9.3CVSS7.9AI score0.07881EPSS
Exploits2References3Affected Software1
0day.today
0day.today
added 2016/03/07 12:0 a.m.53 views

Avast - Authenticode Parsing Memory Corruption

Exploit for windows platform in category dos / poc Source: https://code.google.com/p/google-security-research/issues/detail?id=668 The attached PE file causes memory corruption in Avast, it looks related to authenticode parsing. 474.c0c: Access violation - code c0000005 first chance First chance...

9.3CVSS7.6AI score0.07881EPSS
Exploits2
Exploit DB
Exploit DB
added 2016/03/07 12:0 a.m.22 views

Avast! - Authenticode Parsing Memory Corruption

Source: https://code.google.com/p/google-security-research/issues/detail?id=668 The attached PE file causes memory corruption in Avast, it looks related to authenticode parsing. 474.c0c: Access violation - code c0000005 first chance First chance exceptions are reported before any exception...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2016/03/07 12:0 a.m.11 views

Avast! - Authenticode Parsing Memory Corruption

Avast! - Authenticode Parsing Memory Corruption Source: https://code.google.com/p/google-security-research/issues/detail?id=668 The attached PE file causes memory corruption in Avast, it looks related to authenticode parsing. 474.c0c: Access violation - code c0000005 first chance First chance...

0.9AI score
Exploits0
myhack58
myhack58
added 2015/11/26 12:0 a.m.39 views

Dell aeration eDellRoot root certificate Backdoor-vulnerability warning-the black bar safety net

Earlier this year, Lenovo computer was found loaded with the Superfish adware program, this software will increase the user vulnerable to hackers attack risk, the moment sparked a lot of discussion, and recently, the Duo lab security researcher in Dell Inspiron 1 4 Notebook found some strange...

0.5AI score
Exploits0
ThreatPost
ThreatPost
added 2015/06/15 11:21 a.m.13 views

Duqu 2.0 Attackers Used Stolen Foxconn Certificate to Sign Driver

The attackers behind the recently disclosed Duqu 2.0 APT have used stolen digital certificates to help sneak their malware past security defenses, and one of the certificates used in the attacks was issued to Foxconn, the Chinese company that manufactures products for Apple, BlackBerry, Dell, and...

0.3AI score
Exploits0References3
VulnCheck KEV
VulnCheck KEV
added 2014/07/29 12:0 a.m.3 views

VulnCheck KEV: CVE-2013-3900

A remote code execution vulnerability exists in the way that the WinVerifyTrust function handles Windows Authenticode signature verification for PE files...

8.8CVSS7.5AI score0.44647EPSS
Exploits1References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.33 views

Nokia Multimedia Player 1.0 SEH Unicode Exploit

No description provided by source. ? Exploit Title: Nokia Multimedia player SEH Unicode Date: January 11 2011 Author: Carlos Mario Penagos Hollmann Software Link: http://www.brothersoft.com/nokia-multimedia-player-download-46238.html Version: 1.00.55.5010 Tested on: Windows xp sp3 running on VMwa...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2014/04/16 12:0 a.m.3 views

Microsoft Windows Signature Validation Remote Code Execution - Ver2 (CVE-2012-0151)

A code execution vulnerability has been reported in Windows Authenticode Signature Verification function used for portable executable PE files. The vulnerability is due to an error in the way the Authenticode Signature Verification function validates the file digest of a specially crafted PE file...

4.2AI score0.8878EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2014/01/20 12:0 a.m.47 views

Microsoft Windows WinVerifyTrust PE Validation Security Bypass (MS13-098; CVE-2013-3900)

A remote code execution vulnerability has been reported in Microsoft Windows. The vulnerability is due to an error in the way the WinVerifyTrust function handles Windows Authenticode signature verification for portable executable PE files. A remote attacker could trigger this flaw by sending a...

7.6CVSS3.5AI score0.44647EPSS
Exploits1
NVD
NVD
added 2013/12/11 12:55 a.m.45 views

CVE-2013-3900

Why is Microsoft republishing a CVE from 2013? We are republishing CVE-2013-3900 in the Security Update Guide to update the Security Updates table and to inform customers that the EnableCertPaddingCheck is available in all currently supported versions of Windows 10 and Windows 11. While the forma...

8.8CVSS7.5AI score0.44647EPSS
Exploits1References4
Prion
Prion
added 2013/12/11 12:55 a.m.40 views

Input validation

The WinVerifyTrust function in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly validate PE file digests during...

7.6CVSS8AI score0.44647EPSS
Exploits1References3Affected Software7
Tenable Nessus
Tenable Nessus
added 2013/12/11 12:0 a.m.233 views

KB2915720: Changes in Windows Authenticode Signature Verification

The remote Windows host has not enabled the Windows Authenticode signature verification certificate padding check. This means extraneous information can be included in signed binaries. Note that Microsoft announced on July 29, 2014, that it no longer plans to enforce the stricter signature...

5.5AI score
Exploits0References1
OpenVAS
OpenVAS
added 2013/12/11 12:0 a.m.466 views

Microsoft WinVerifyTrust Signature Validation Vulnerability (2893294)

This host is missing an critical security update according to Microsoft Bulletin MS13-098. OpenVAS Vulnerability Test $Id: secpodms13-098.nasl 6104 2017-05-11 09:03:48Z teissa $ Microsoft WinVerifyTrust Signature Validation Vulnerability 2893294 Authors: Shashi Kiran N Copyright: Copyright C 2013...

7.6CVSS0.44647EPSS
Exploits1References3
CVE
CVE
added 2013/12/11 12:0 a.m.3240 views

CVE-2013-3900

CVE-2013-3900 describes a remote code execution in the WinVerifyTrust Authenticode verification for PE files. An attacker could modify a signed executable to execute code without invalidating the signature, potentially gaining full control of the system. Microsoft republished this CVE in the Secu...

8.8CVSS7.4AI score0.44647EPSS
In wildExploits1References4Affected Software22
Rows per page
Query Builder