7 matches found
PT-2026-31656
A Dynamic-link Library Injection vulnerability in GatewayGeo MapServer for Windows version 5 allows attackers to escalate privileges via a crafted executable...
Siemens Simcenter Amesim 代码注入漏洞
Simcenter Amesim is an integrated and scalable system simulation platform that allows system simulation engineers to virtually evaluate and optimize the performance of electromechanical systems. A remote code execution vulnerability exists in Siemens Simcenter Amesim, which can be exploited by an...
Infoblox BloxOne Endpoint 代码问题漏洞
Infoblox BloxOne Endpoint is a lightweight mobile agent from Infoblox USA. Redirects DNS traffic from remote devices to the BloxOne Threat Defense Cloud. A security vulnerability exists in Infoblox BloxOne Endpoint for Windows versions prior to 2.2.7, which stems from a DLL injection on this...
LINE for Windows 代码问题漏洞
LINE for Windows is a Windows-based instant messaging application from Japanese company LINE. A security vulnerability exists in LINE for Windows 6.2.1.2289 and earlier, which allows execution of arbitrary code via injection from a malicious DLL...
ATT&CK Table for Sophisticated Spearphishing Campaign CSA
Summary See Technical Details section Technical Details Table 1 provides a summary of the MITRE ATT&CK techniques observed. Table 1: MITRE ATT&CK techniques observed Technique Title | Technique ID ---|--- Process Injection: Dynamic-link Library Injection | T1055.001 Ingress Tool Transfer | T1105...
Cyberark Software Endpoint Privilege Manager Code Issue Vulnerability
Cyberark Software CyberArk Software Endpoint Privilege Manager formerly Viewfinity is a privilege management software from CyberArk Software Cyberark Software, Israel. The software includes features such as privilege management, application control, and credential loss protection. A security...
CVE-2020-5821
Symantec Endpoint Protection SEP and Symantec Endpoint Protection Small Business Edition SEP SBE, prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to a DLL injection vulnerability, which is a type of issue whereby an individual attempts to execute their own code ...