Microsoft Windows "CreateProcess()" .cmd和.bat安全绕过漏洞

Bugtraq ID:66619 CVE ID:CVE-2014-0315 Windows是一款由美国微软公司开发的窗口化操作系统。 由于当操作系统处理关于"CreateProcess"方法的.bat和.cmd文件时没有正确限制文件路径，攻击者可以利用漏洞执行特制的可执行文件，例如由诱使用户打开位于远程WebDAV或SMB共享的应用程序。 0 Microsoft Windows 7 Microsoft Windows 8 Microsoft Windows 8.1 Microsoft Windows RT Microsoft Windows RT 8.1 Microsoft Window...

Ubuntu Update for file USN-2162-1

Check for the Version of file OpenVAS Vulnerability Test $Id: gbubuntuUSN21621.nasl 7957 2017-12-01 06:40:08Z santu $ Ubuntu Update for file USN-2162-1 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you...

Ubuntu: Security Advisory (USN-2162-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

HP LoadRunner Virtual User Generator EmulationAdmin Directory Traversal (CVE-2013-4837)

Multiple directory traversal vulnerabilities exist in HP LoadRunner. These vulnerabilities are due to a lack of input validation on SOAP requests, specifically, the copyFileToServer and the getFileContentAsLines operations of the EmulationAdmin web service. Unauthenticated remote attackers could...

Threat Outbreak Alert: Fake Payment Transaction Notice Email Messages on February 21, 2014

Medium Alert ID: 32966 First Published: 2014 February 21 17:19 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a payment transaction notice for the recipient. The text in the email message attempts to convince the...

Schweitzer Engineering Laboratories AcSELerator Improper Authorization Vulnerability

Overview This advisory provides mitigation details for a vulnerability affecting the Schweitzer Engineering Laboratories SEL AcSELerator QuickSet software. Independent researcher Michael Toecker of Digital Bond has identified an improper authorization vulnerability in the SEL AcSELerator...

MS13-098: Vulnerability in Windows Could Allow Remote Code Execution (2893294)

The remote host contains a version of Microsoft Windows that is affected by a remote code execution vulnerability. The vulnerability exists in the method in which the WinVerifyTrust function deals with Windows Authenticode signature verification for portable executable files. An attacker could...

Double Executable File Extension Arbitrary File Execution

Certain malicious executable files can be hidden using double extension filenames...

Threat Outbreak Alert: Fake Product Quote Request Email Messages on June 5, 2014

Medium Alert ID: 31005 First Published: 2013 September 28 05:39 GMT Last Updated: 2014 June 6 12:40 GMT Version: 4 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product quote request for the recipient. The text in the email message...

Mozilla 24 Resolves 17 Security Vulnerabilities

The Mozilla Foundation released Firefox 24 yesterday, issuing 17 security patches for the browser. Seven of the bulletins received the highest, critical impact rating, four are considered high impact advisories, the second most severe rating, and the remaining six are of moderate impact. Mozilla’...

Threat Outbreak Alert: Email Messages with Malicious Attachments on September 12, 2013

Medium Alert ID: 30763 First Published: 2013 September 12 15:48 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that contain a malicious attachment. The text in the email message attempts to convince the recipient to open the attachment and...

[Hidden File Finder v2.5] Tool to Find and Unhide/Remove all the Hidden Files

Hidden File Finder is the free software to quickly scan and discover all the Hidden files on your Windows system. It performs swift multi threaded scan of all the folders parallely and quickly uncovers all the hidden files. It automatically detects the Hidden Executable Files EXE, DLL, COM etc an...

Java User Agent Executable Download

Some executable files can be downloaded to computer systems Java user agent. There are cases in which certain traffic, although not intended for malicious use, is very unsafe, since it may transfer shellcode which is undetectable by IPS...

SuSE 11.2 / 11.3 Security Update : java-1_6_0-ibm (SAT Patch Numbers 8105 / 8107)

IBM Java 1.6.0 has been updated to SR14 to fix bugs and security issues. Please see also http://www.ibm.com/developerworks/java/jdk/alerts/ Also the following bugs have been fixed : - add Europe/Busingen to tzmappings. bnc817062 - mark files in jre/bin and bin/ as executable bnc823034 %NASLMINLEV...

Threat Outbreak Alert: Fake Shipping Order Information Email Messages on August 26, 2013

Medium Alert ID: 30010 First Published: 2013 July 10 16:08 GMT Last Updated: 2013 August 26 18:40 GMT Version: 4 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain shipping order information for the recipient. The text in the email messag...

Threat Outbreak Alert: Fake Personal Photos Attachment Notification Email Messages on July 6, 2013

Medium Alert ID: 29969 First Published: 2013 July 8 15:08 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an attachment of personal photos for the recipient. The text in the email message attempts to convince the recipie...

Threat Outbreak Alert: Fake Product Services Specification Request Email Messages on August 29, 2013

Medium Alert ID: 29868 First Published: 2013 July 1 18:53 GMT Last Updated: 2013 August 29 12:36 GMT Version: 9 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a business specification and outlines for the recipient. The text in the...

CVE-2013-4094

The Key Management feature in the SecureSphere Operations Manager SOM Management Server in Imperva SecureSphere 9.0.0.5 allows remote authenticated users to upload executable files via the 1 privatekey or 2 publickey parameter in a T/keyManagement request to plain/settings.html, as demonstrated b...

Design/Logic Flaw

The Key Management feature in the SecureSphere Operations Manager SOM Management Server in Imperva SecureSphere 9.0.0.5 allows remote authenticated users to upload executable files via the 1 privatekey or 2 publickey parameter in a T/keyManagement request to plain/settings.html, as demonstrated b...

CVE-2013-4094

The Key Management feature in the SecureSphere Operations Manager SOM Management Server in Imperva SecureSphere 9.0.0.5 allows remote authenticated users to upload executable files via the 1 privatekey or 2 publickey parameter in a T/keyManagement request to plain/settings.html, as demonstrated b...