359 matches found
CVE-2023-42521
Certain WithSecure products allow a remote crash of a scanning engine via processing of a compressed file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client...
PT-2023-28390 · Withsecure · Withsecure Elements Endpoint Protection +5
Name of the Vulnerable Software and Affected Versions: WithSecure Client Security version 15 WithSecure Server Security version 15 WithSecure Email and Server Security version 15 WithSecure Elements Endpoint Protection versions 17 and later WithSecure Client Security for Mac version 15 WithSecure...
CVE-2023-42522
Certain WithSecure products allow a remote crash of a scanning engine via processing of an import struct in a PE file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecu...
WithSecure Multiple Product Resource Management Error Vulnerability
WithSecure products is a series of security software from the Finnish company WithSecure. WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and earlier. versions, WithSecure Client Security for Mac 15,...
CVE-2023-42520
CVE-2023-42520 affects multiple WithSecure products, where unpacking of specially crafted data files can cause a remote crash of the scanning engine. Affected: WithSecure Client Security 15, Server Security 15, Email and Server Security 15, Elements Endpoint Protection 17+, Client Security for Ma...
CVE-2023-42520
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of crafted data files. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client...
CVE-2023-42520
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of crafted data files. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client...
CVE-2023-42523
Certain WithSecure products allow a remote crash of a scanning engine via unpacking of a PE file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security fo...
CVE-2023-42526
Certain WithSecure products allow a remote crash of a scanning engine via decompression of crafted data files. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Clien...
CVE-2023-42523
Summary: CVE-2023-42523 affects WithSecure products and causes a remote crash of the scanning engine when unpacking a PE file. Affected products/versions (from documents): WithSecure Client Security 15; WithSecure Server Security 15; WithSecure Email and Server Security 15; WithSecure Elements En...
Lazarus Group's infrastructure reuse leads to discovery of new malware
In the Lazarus Groups latest campaign, which we detailed in a recent blog, the North Korean state-sponsored actor is exploiting CVE-2022-47966, a ManageEngine ServiceDesk vulnerability to deploy multiple threats. In addition to their "QuiteRAT" malware, which we covered in the blog, we also...
Post-Macro World Sees Rise in Microsoft OneNote Documents Delivering Malware
In a continuing sign that threat actors are adapting well to a post-macro world, it has emerged that the use of Microsoft OneNote documents to deliver malware via phishing attacks is on the rise. Some of the notable malware families that are being distributed using this method include AsyncRAT,...
Mikko Hypponen’s opinion on the technological revolution
By Owais Sultan Mikko Hypponen, Chief Research Officer at WithSecure Formerly F-Secure, is considered one of the best cybersecurity speakers in… This is a post from HackRead.com Read the original post: Mikko Hypponens opinion on the technological revolution...
CVE-2022-45871
A Denial-of-Service DoS vulnerability was discovered in the fsicapd component used in WithSecure products whereby the service may crash while parsing ICAP request. The exploit can be triggered remotely by an attacker...
Denial of service
A Denial-of-Service DoS vulnerability was discovered in the fsicapd component used in WithSecure products whereby the service may crash while parsing ICAP request. The exploit can be triggered remotely by an attacker...
WithSecure products 安全漏洞
WithSecure products is a line of security software from the Finnish company WithSecure. A security vulnerability exists in WithSecure that stems from a denial-of-service DoS vulnerability found in the fsicapd component, which could cause the service to crash while parsing ICAP requests...
CVE-2022-45871 Denial-of-Service (DoS) Vulnerability
A Denial-of-Service DoS vulnerability was discovered in the fsicapd component used in WithSecure products whereby the service may crash while parsing ICAP request. The exploit can be triggered remotely by an attacker...
CVE-2022-45871 Denial-of-Service (DoS) Vulnerability
A Denial-of-Service DoS vulnerability was discovered in the fsicapd component used in WithSecure products whereby the service may crash while parsing ICAP request. The exploit can be triggered remotely by an attacker...
PT-2022-27661 · Withsecure · Withsecure
Name of the Vulnerable Software and Affected Versions: WithSecure products affected versions not specified Description: A Denial-of-Service DoS issue was found in the fsicapd component, which can cause the service to crash when parsing an ICAP request. This can be triggered remotely by an attacke...
CVE-2022-45871
CVE-2022-45871 describes a DoS in the fsicapd component used by WithSecure products, where the service may crash while parsing ICAP requests. The vulnerability can be triggered remotely by an attacker, with exploitation reportedly possible over the network. Documented impact is service crash (ava...