Lucene search
K

209 matches found

The Hacker News
The Hacker News
added 2017/10/19 11:7 p.m.13 views

Unpatched Microsoft Word DDE Exploit Being Used In Widespread Malware Attacks

A newly discovered unpatched attacking method that exploits a built-in feature of Microsoft Office is currently being used in various widespread malware attack campaigns. Last week we reported how hackers could leveraging an old Microsoft Office feature called Dynamic Data Exchange DDE, to perfor...

7.7AI score
Exploits0
Imperva Blog
Imperva Blog
added 2017/07/10 3:30 p.m.80 views

Static Versus Dynamic Data Masking

Most participants in the trench warfare of IT security agree that the best way to protect data is to apply a layered approach to security. Data masking is a security and privacy enhancing technology recommended by industry analysts as a must-have data protection layer. While terminology varies...

7.3AI score
Exploits0
Fedora
Fedora
added 2016/08/11 9:56 p.m.38 views

[SECURITY] Fedora 24 Update: python-2.7.12-2.fc24

Python is an interpreted, interactive, object-oriented programming language often compared to Tcl, Perl, Scheme or Java. Python includes modules, classes, exceptions, very high level dynamic data types and dynamic typing. Python supports interfaces to many system calls and libraries, as well as t...

6.1CVSS1.4AI score0.04526EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2013/07/26 12:0 a.m.41 views

Microsoft Windows win32k.sys Privilege Escalation Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must run a malicious executable. The specific flaw exists within the handling of Dynamic Data Exchange...

6.2CVSS3.2AI score0.01743EPSS
Exploits1References1
Saint
Saint
added 2006/02/24 12:0 a.m.23 views

Windows NetDDE buffer overflow

Added: 02/24/2006 CVE: CVE-2004-0206 BID: 11372 OSVDB: 10689 Background Network Dynamic Data Exchange NetDDE is a Windows service which allows two applications to communicate with each other over a network. Problem A buffer overflow in the NetDDE service could allow a remote, anonymous attacker t...

7.5CVSS7.5AI score0.77002EPSS
Exploits8
Cvelist
Cvelist
added 2004/10/16 4:0 a.m.32 views

CVE-2004-0206

Network Dynamic Data Exchange NetDDE services for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to remotely execute arbitrary code or locally gain privileges via a malicious message or application that involves an "unchecked buffer,"...

7.6AI score0.77002EPSS
Exploits8References14
CERT
CERT
added 2002/07/13 12:0 a.m.27 views

Microsoft Windows 2000 Network Dynamic Data Exchange (DDE) executes code as Local System

Overview The Windows 2000 Network DDE agent permits local users to execute commands with system privileges. Description Dynamic Data Exchange DDE is an interprocess communication mechanism used in Microsoft Windows. A DDE share is an area of memory which is used to store and retrieve data. Networ...

7.2CVSS6.8AI score0.03501EPSS
Exploits1References5
Cvelist
Cvelist
added 2001/05/07 4:0 a.m.27 views

CVE-2001-0015

Network Dynamic Data Exchange DDE in Windows 2000 allows local users to gain SYSTEM privileges via a "WMCOPYDATA" message to an invisible window that is running with the privileges of the WINLOGON process...

6.5AI score0.03501EPSS
Exploits1References4
NVD
NVD
added 2001/03/12 5:0 a.m.19 views

CVE-2001-0015

Network Dynamic Data Exchange DDE in Windows 2000 allows local users to gain SYSTEM privileges via a "WMCOPYDATA" message to an invisible window that is running with the privileges of the WINLOGON process...

7.2CVSS6.5AI score0.03501EPSS
Exploits1References4
Rows per page
Query Builder