EUVD-2025-37049

Malicious code in windowsregistryeditor npm...

MAL-2025-49244 Malicious code in windows_registry_editor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0bcad8f2c4bdd8438d2826d78f285454aa72dc719c9fb7d52a74928c5b999d0 The package windowsregistryeditor was found to contain malicious code...

Malicious code in windows_registry_editor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b0bcad8f2c4bdd8438d2826d78f285454aa72dc719c9fb7d52a74928c5b999d0 The package windowsregistryeditor was found to contain malicious code...

CVE-2024-3509

A stored cross-site scripting XSS vulnerability exists in the Management Console of multiple WSO2 products due to insufficient input validation in the Rich Text Editor within the registry section. To exploit this vulnerability, a malicious actor must have a valid user account with administrative...

Intelligent Build to Lossless monitoring

Monitoring Intelligent Build to Lossless can be done via the Graphics status indicator: If more in-depth monitoring is needed, an in-session Intelligent Build to Lossless visual indicator can be enabled for the session. This indicator is turned off by default. When enabled, it will display a visu...

The Windows Registry Adventure #2: A brief history of the feature

Posted by Mateusz Jurczyk, Google Project Zero Before diving into the low-level security aspects of the registry, it is important to understand its role in the operating system and a bit of history behind it. In essence, the registry is a hierarchical database made of named "keys" and "values",...

Subnet Solutions Inc. PowerSYSTEM Center

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Subnet Solutions Inc. Equipment: PowerSYSTEM Center Vulnerability: Unquoted Search Path or Element 2. RISK EVALUATION Successful exploitation of this vulnerability could result in an attacker achieving arbitrary...

CVE-2022-32389

Isode SWIFT v4.0.2 was discovered to contain hard-coded credentials in the Registry Editor. This allows attackers to access sensitive information such as user credentials and certificates...

CVE-2022-32389

Isode SWIFT v4.0.2 was discovered to contain hard-coded credentials in the Registry Editor. This allows attackers to access sensitive information such as user credentials and certificates...

CVE-2022-32389

Isode SWIFT v4.0.2 was discovered to contain hard-coded credentials in the Registry Editor. This allows attackers to access sensitive information such as user credentials and certificates...

Hardcoded credentials

Isode SWIFT v4.0.2 was discovered to contain hard-coded credentials in the Registry Editor. This allows attackers to access sensitive information such as user credentials and certificates...

CVE-2022-32389

Summary: CVE-2022-32389 affects Isode SWIFT v4.0.2, where hard-coded credentials are present in the Registry Editor, enabling access to sensitive information such as user credentials and certificates. Affected product: Isode SWIFT 4.0.2 (Registry Editor component mentioned as the source of the is...

CVE-2022-32389

Isode SWIFT v4.0.2 was discovered to contain hard-coded credentials in the Registry Editor. This allows attackers to access sensitive information such as user credentials and certificates...

Microsoft, CISA Urge Mitigations for Zero-Day RCE Flaw in Windows

Both Microsoft and federal cybersecurity officials are urging organizations to use mitigations to combat a zero-day remote control execution RCE vulnerability in Windows that allows attackers to craft malicious Microsoft Office documents. Microsoft has not revealed much about the MSHTML bug,...

Microsoft Guidance for Enabling Request Smuggling Filter on IIS Servers

Executive Summary Microsoft is aware of a tampering vulnerability in the way that HTTP proxies front-end and web servers back-end that do not strictly adhere to RFC standards handle sequences of HTTP requests received from multiple sources. An attacker who successfully exploited the vulnerability...

Microsoft Adds DNS-Over-HTTPS Support for Windows 10 Insiders

Microsoft has announced the first testable version of DNS-Over-HTTPS DoH support, available for its Windows 10 operating system. Support for the DoH protocol, which Microsoft first announced in November, is available in the Windows 10 Insider Preview Build 19628. This is accessible for members of...

Free, Open-Source Remote Administration Tool for Windows: QuasarRAT

Quasar is a fast and light-weight remote administration tool coded in C. Providing high stability and an easy-to-use user interface, Quasar is the perfect remote administration solution for you. Features TCP network stream IPv4 & IPv6 support Fast network serialization NetSerializer Compressed...

Microsoft Publisher 'Dynamic Data Exchange (DDE)' Attacks Security Advisory (4053440)

This host is missing an important security update according to Microsoft Security Advisory 4053440. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Error 1053: The service did not respond to the start or control request in a timely fashion.

Challenge A Veeam-related service fails to start with the following error: Error 1053: The service did not respond to the start or control request in a timely fashion. Cause This error is a generic Windows service error and could be caused by a variety reasons, some of which are discussed in the...

MS12-060: Description of the security update for Office 2010: August 14, 2012

MS12-060: Description of the security update for Office 2010: August 14, 2012 View products that this article applies to.Microsoft has released the security bulletin MS12-060. You can view the complete security bulletin by going to one of the following Microsoft websites: Home users:...