IBM EGatherer 2.0 ActiveX Control Dangerous Method Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10562/info It is reported that the IBM eGatherer ActiveX control contains dangerous methods that may result in a remote compromise of a system on which the ActiveX control is installed. These methods may be accessed by a...

Solarwinds Storage Manager 5.1.0 - SQL Injection

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core'...

IBM ACPRunner 1.2.5 ActiveX Control Dangerous Method Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10561/info It is reported that the IBM acpRunner ActiveX control contains dangerous methods that may result in a remote compromise of a system on which the ActiveX control is installed. These methods may be accessed by a...

Threat Outbreak Alert: Fake Fax Message Notification Email Messages on May 27, 2014

Medium Alert ID: 34353 First Published: 2014 May 28 17:51 GMT Version: 1 Summary Cisco Security has detected significant activity related to German-language spam email messages that claim to contain a fax message for the recipient. The text in the email message attempts to convince the recipient ...

Threat Outbreak Alert: Email Messages with Malicious Attachment on May 27, 2014

Medium Alert ID: 34370 First Published: 2014 May 27 19:20 GMT Last Updated: 2014 May 29 12:59 GMT Version: 2 Summary Cisco Security has detected significant activity related to German-language spam email messages that contain an attachment for the recipient. The email message attempts to convince...

Threat Outbreak Alert: Fake Invitation Email Messages on May 5, 2014.

Medium Alert ID: 34120 First Published: 2014 May 6 14:52 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an invitation for the recipient. The text in the email message attempts to convince the recipient to open the...

Threat Outbreak Alert: Fake Product Catalog Notification Email Messages on April 28, 2014

Medium Alert ID: 33979 First Published: 2014 April 29 18:36 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages with a blank message body and a catalog attached for the recipient. However, the .zip attachment contains a malicious .exe file that,...

Threat Outbreak Alert: Fake Purchase Order Notification Email Messages on March 16, 2014

Medium Alert ID: 33359 First Published: 2014 March 17 14:14 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a purchase order notification for the recipient. The text in the email message attempts to convince the recipien...

Threat Outbreak Alert: Fake Product Quote Request Email Messages on March 2, 2014

Medium Alert ID: 33153 First Published: 2014 March 4 15:22 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product quotation request for the recipient. The text in the email message attempts to convince the recipient t...

Threat Outbreak Alert: Fake Invoice Email Messages on February 13, 2014

Medium Alert ID: 32862 First Published: 2014 February 13 20:36 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an invoice for the recipient. The text in the email message attempts to convince the recipient to open the...

Cutwail-Like Wigon.PH_44 Trojan Sends Spam, Steals Data

A new spambot has been discovered that generates copious amounts of HTTP POST and GET requests in an attempt to disguise what it’s really up to and throw off the scent of detection capabilities. “In this case, it seems like it’s trying to hide impactful communication where there are actual payloa...

Threat Outbreak Alert: Fake Photo Attachment Email Messages on January 16, 2014

Medium Alert ID: 32472 First Published: 2014 January 16 20:33 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a photo for the recipient. The text in the email message attempts to convince the recipient to open the...

Threat Outbreak Alert: Fake Transaction Processing Failure Notification Email Messages on January 9, 2014

Medium Alert ID: 32393 First Published: 2014 January 9 21:22 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a failed transaction notice for the recipient. The text in the email message attempts to convince the recipient...

Threat Outbreak Alert: Fake Company Complaint Email Messages on November 26, 2013

Medium Alert ID: 31905 First Published: 2013 November 26 18:16 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a notification regarding a company complaint for the recipient. The text in the email message attempts to...

Threat Outbreak Alert: Fake Payment Information Email Messages on November 21, 2013

Medium Alert ID: 31868 First Published: 2013 November 22 13:50 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain payment information for the recipient. The text in the email message attempts to convince the recipient to op...

Threat Outbreak Alert: Fake Accounting Form Email Messages on November 15, 2013

Medium Alert ID: 31791 First Published: 2013 November 16 03:30 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an accounting form for the recipient. The text in the email message attempts to convince the recipient to ope...

Threat Outbreak Alert: Fake Regulation Document Delivery Email Messages on November 6, 2013

Medium Alert ID: 31667 First Published: 2013 November 7 14:59 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a regulations document for the recipient. The text in the email message attempts to convince the recipient to...

Double Executable File Extension Arbitrary File Execution

Certain malicious executable files can be hidden using double extension filenames...

Threat Outbreak Alert: Fake Fax Delivery Notification Email Messages on October 30, 2013

Medium Alert ID: 31555 First Published: 2013 October 30 19:22 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a fax notification for the recipient. The text in the email message attempts to convince the recipient to open...

MS13-071 Microsoft Windows Theme File Handling Code Execution

This Metasploit module exploits a vulnerability mainly affecting Microsoft Windows XP and Windows 2003. The vulnerability exists in the handling of the Screen Saver path, in the boot section. An arbitrary path can be used as screen saver, including a remote SMB resource, which allows for remote...