248 matches found
Memory corruption vulnerability exists in QQ Video for Windows (CNVD-2021-17323)
QQ Video is a local player from Tencent that supports movie and music files in any format. A memory corruption vulnerability exists in QQ Video for Windows, which can be exploited by attackers to cause the program to crash...
Masslogger Trojan Upgraded to Steal All Your Outlook, Chrome Credentials
A credential stealer infamous for targeting Windows systems has resurfaced in a new phishing campaign that aims to steal credentials from Microsoft Outlook, Google Chrome, and instant messenger apps. Primarily directed against users in Turkey, Latvia, and Italy starting mid-January, the attacks...
Tencent QQ suffers from DLL hijacking vulnerability (CNVD-2021-01907)
Tencent QQ is a chat software. A DLL hijacking vulnerability exists in Tencent QQ, which can be exploited by attackers to execute malicious code...
Tencent QQ suffers from DLL hijacking vulnerability
Tencent QQ is a chat software. A dll hijacking vulnerability exists in Tencent QQ. An attacker can exploit this vulnerability to execute malicious code...
Tencent QQ suffers from DLL hijacking vulnerability (CNVD-2021-01906)
Tencent QQ is a chat software. Tencent QQ suffers from a DLL hijacking vulnerability that can be exploited by attackers to execute malicious code...
Binary Vulnerability in Tencent QQ Music Windows Client
QQ Music for PC is a free music player, QQ Music for PC provides users with the latest and hottest song resources and music videos for free. A DLL hijacking vulnerability exists in the Tencent QQ Music Windows client, which can be exploited by attackers to gain control of the server...
HackBrowserData - Decrypt Passwords/Cookies/History/Bookmarks From The Browser
hack-browser-data is an open-source tool that could help you decrypt data passwords / bookmarks / cookies / history from the browser. It supports the most popular browsers on the market and runs on Windows, macOS and Linux. Supported Browser Windows Browser | Password | Cookie | Bookmark | Histor...
Bypassing MassLogger Anti-Analysis — a Man-in-the-Middle Approach
The FireEye Front Line Applied Research & Expertise FLARE Team attempts to always stay on top of the most current and emerging threats. As a member of the FLARE Reverse Engineer team, I recently received a request to analyze a fairly new credential stealer identified as MassLogger. Despite the la...
NetEase(163,126) Mail Persistent XSS Vulnerability
This ia a 0day XSS vulnerability. The vulnerability for Netease email163,126 that works on all operating systems and browsers. Android and iPhone sometimes don't work You can easily obtain the users session and password with this XSS. Also, QQ-XSS vulnerability will be uploaded soon. Thank you...
Tencent QQ Music suffers from dll hijacking vulnerability
Tencent QQ Music is an online music service product launched by Tencent. Tencent QQ Music suffers from a dll hijacking vulnerability, which can be exploited by an attacker to load an untrusted dynamic link library for command execution...
QQ is vulnerable to dll hijacking
QQ is an Internet-based instant messaging IM software. QQ suffers from a dll hijacking vulnerability, which can be exploited to load untrusted dynamic link libraries for command execution...
QQ Browser installation is vulnerable to dll hijacking
QQ Browser is an extremely fast browser developed by Tencent, which supports multiple terminals such as PC, Android and Apple. QQ Browser installation suffers from a dll hijacking vulnerability, which can be exploited by attackers to load untrusted dynamic link libraries for command execution...
Denial Of Service (DoS)
pidgin is vulnerable to denial of service DoS. The vulnerability exists in Pidgin's QQ protocol decryption handler. When the QQ protocol decrypts packet information, heap data can be overwritten, possibly causing Pidgin to crash...
Command Execution Vulnerability in QQ Music of Shenzhen Tencent Computer System Co.
QQ Music is an online music service product launched by Tencent. Shenzhen Tencent Computer System Limited QQ Music suffers from a command execution vulnerability that can be exploited by attackers to execute malicious commands...
Shenzhen Tencent Computer System Co., Ltd QQ Video suffers from array out-of-bounds reading vulnerability (CNVD-2020-23525)
QQ Video Player is a Tencent relaunched full-format video player software, fully supports 3GP, MKV, MOV, AVI, FLV, MP4 and other common formats of video files, support for MKV embedded subtitles and SRT, SMI plug-in subtitles, while supporting multi-track switching. Shenzhen Tencent Computer...
QQ Music PC client suffers from Dll hijacking vulnerability
QQ Music, part of Tencent Music Entertainment Group, is a music streaming player that supports both online and local music playback, and is the richest music platform in China. A Dll hijacking vulnerability exists in the QQ Music PC client, which can be exploited by attackers to load a malicious...
Code Execution Vulnerability in QQ Pinyin Input Method Installer
QQ Pinyin Input Method is a Chinese pinyin input method software. A code execution vulnerability exists in the QQ Pinyin Input Method installer. It can be exploited by an attacker to execute arbitrary code...
QQ Image is vulnerable to DLL hijacking
QQ Image is the latest desktop image processing software from Tencent. QQ Image has a dll hijacking vulnerability, which can be exploited by attackers to load a malicious dll and execute malicious code...
QQ Video pc client software suffers from dll hijacking vulnerability
QQ Video is a local player from Tencent that supports movie and music files in any format. QQ Video pc client software suffers from a dll hijacking vulnerability, which can be exploited by attackers to inject DLL files and execute arbitrary commands...
Command Execution Vulnerability in Tencent QQ pc Client Software
QQ, short for Tencent QQ, is an Internet-based instant messaging IM software developed by Tencent. A command execution vulnerability exists in the Tencent QQ pc client software, where the software PC client can allow an attacker to inject executable DLL files into the client process to perform...