970 matches found
bitdefender.com.kh XSS vulnerability
Open Bug Bounty ID: OBB-692604 Description| Value ---|--- Affected Website:| bitdefender.com.kh Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidd...
CVE-2018-8955
The installer for BitDefender GravityZone relies on an encoded string in a filename to determine the URL for installation metadata, which allows remote attackers to execute arbitrary code by changing the filename while leaving the file's digital signature unchanged...
CVE-2018-8955
The installer for BitDefender GravityZone relies on an encoded string in a filename to determine the URL for installation metadata, which allows remote attackers to execute arbitrary code by changing the filename while leaving the file's digital signature unchanged...
CVE-2018-8955
CVE-2018-8955 affects the BitDefender GravityZone installer. The root cause is that the installer relies on an encoded string in a filename to determine the URL for installation metadata, allowing a remote attacker to execute arbitrary code by changing the filename while the file’s digital signat...
CVE-2018-8955
The installer for BitDefender GravityZone relies on an encoded string in a filename to determine the URL for installation metadata, which allows remote attackers to execute arbitrary code by changing the filename while leaving the file's digital signature unchanged...
Bitdefender GravityZone Arbitrary Code Execution Vulnerability
Bitdefender GravityZone is a security solution for enterprise control and protection. An arbitrary code execution vulnerability exists in Bitdefender GravityZone, which can be exploited by an attacker to execute arbitrary code...
New Android Malware Framework Turns Apps Into Powerful Spyware
Security researchers have uncovered a new, powerful Android malware framework that is being used by cybercriminals to turn legitimate apps into spyware with extensive surveillance capabilities—as part of what seems to be a targeted espionage campaign. Legitimate Android applications when bundled...
Steam Bans Developer After Outcry Over Cryptomining, Scam Items
The popular Steam online gaming platform has pulled a simple, 2D game from its library, after it was found to be consuming an unusual amount of processing power on gamers’ machines. Steam owner Valve booted the game, “Abstractism,” after players lodged complaints about the game chewing up process...
Analysis antivirus BitDefender of an integer overflow vulnerability, the first part-the vulnerability warning-the black bar safety net
In software vulnerabilities“Pantheon”, the security software vulnerability is considered other than software vulnerabilities in more serious. We rely on security software to defend against attackers, so our defensive system in the vulnerability only allows an attacker to cause harm, but also will...
Analysis antivirus BitDefender integer overflow vulnerabilities Part II--exploit-vulnerability warning-the black bar safety net
Our last article reviewed from Pagefault submitted content, detailed description of the Bitdefender antivirus product of the integer overflow problem. Although only rely on the content of these is sufficient to the supplier to submit a bug report, but the Pagefault by providing a...
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of June 18, 2018
As I pull together the list of zero-day filters for this blog, I see all types of vulnerabilities from various vendors. My interest is always piqued when I see a vulnerability affecting a security company. The Zero Day Initiative’s ZDI interest was also piqued when the researcher Pagefault...
Zacinlo malware spams Windows 10 PCs with ads and takes screenshots
By Waqas The IT security researchers at Bitdefender have discovered a sophisticated This is a post from HackRead.com Read the original post: Zacinlo malware spams Windows 10 PCs with ads and takes screenshots...
Vote for Malwarebytes Labs: European Security Blogger Awards 2018
It's nearly time for Infosec Europe 2018, and that means it's also time to consider voting for your favourite security blogs, podcasts, video channels, and more for the upcoming European Security Blogger Awards. Thanks to your generous votes, we've been fortunate enough to pick up the award for...
bitdefender.co.th XSS vulnerability
Open Bug Bounty ID: OBB-585225 Description| Value ---|--- Affected Website:| bitdefender.co.th Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Bitdefender Total Security Insecure Pipeline Privilege Vulnerability
Bitdefender Total Security is a suite of antivirus programs from the Romanian company Bitdefender. A security vulnerability exists in BitDefender Total Security 2018 version. A local attacker can exploit the vulnerability to cause a denial of service or gain privileges by emulating all channels...
CVE-2018-6183
BitDefender Total Security 2018 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of an "insecurely created named pipe". Ensures full access to Everyone users group...
Design/Logic Flaw
BitDefender Total Security 2018 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of an "insecurely created named pipe". Ensures full access to Everyone users group...
CVE-2018-6183
BitDefender Total Security 2018 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of an "insecurely created named pipe". Ensures full access to Everyone users group...
CVE-2018-6183
BitDefender Total Security 2018 is affected by CVE-2018-6183. The issue allows local users to gain privileges or cause a denial of service by impersonating all channels through an insecurely created named pipe, granting full access to the Everyone group. The root cause centers on insecure named p...
CVE-2018-6183
BitDefender Total Security 2018 allows local users to gain privileges or cause a denial of service by impersonating all the pipes through a use of an "insecurely created named pipe". Ensures full access to Everyone users group...