Lucene search
K

140 matches found

mmpc
mmpc
added 2017/11/13 1:54 p.m.90 views

Detecting reflective DLL loading with Windows Defender ATP

Today's attacks put emphasis on leaving little, if any, forensic evidence to maintain stealth and achieve persistence. Attackers use methods that allow exploits to stay resident within an exploited process or migrate to a long-lived process without ever creating or relying on a file on disk. In...

6.8AI score
Exploits0
zdt
zdt
added 2017/10/30 12:0 a.m.26 views

Microsoft Windows 10 Creators Update 32-bit Ring-0 Code Execution Exploit

Microsoft Windows 10 Creators Update suffers from a 32-bit execution of ring-0 code from NULL page via NtQuerySystemInformation class 185, Warbird functionality. Windows 10 Creators Update 32-bit execution of ring-0 code from NULL page via NtQuerySystemInformation class 185, Warbird functionality...

0.3AI score
Exploits0
mmpc
mmpc
added 2017/10/23 1:1 p.m.41 views

Move away from passwords, deploy Windows Hello. Today!

Something we understood from the very beginning with Windows Hello for Business is our customers would approach Windows 10 in a series of phases. The first phase is to simply deploy the platform itself. From there, additional phases would follow to take advantage of optional Windows 10 technologi...

7AI score
Exploits0
exploitpack
exploitpack
added 2017/10/06 12:0 a.m.67 views

Microsoft Windows 10 RS2 (x64) - win32kfull!bFill Pool Overflow

Microsoft Windows 10 RS2 x64 - win32kfull!bFill Pool Overflow Sources: https://siberas.de/blog/2017/10/05/exploitationcasestudywildpooloverflowCVE-2016-3309reloaded.html https://github.com/siberas/CVE-2016-3309Reloaded Exploits for the recently-patched win32kfull!bFill vulnerability. Executing th...

7.2CVSS0.20625EPSS
Exploits8
kitploit
kitploit
added 2017/08/17 2:12 p.m.44 views

Koadic - COM Command & Control Framework (JScript RAT)

Koadic, or COM Command & Control, is a Windows post-exploitation rootkit similar to other penetration testing tools such as Meterpreter and Powershell Empire. The major difference is that Koadic does most of its operations using Windows Script Host a.k.a. JScript/VBScript, with compatibility in t...

7.3AI score
Exploits0References1
msrc
msrc
added 2017/08/09 7:0 a.m.6 views

Moving Beyond EMET II – Windows Defender Exploit Guard

Since we last wrote about the future of EMET and how it relates to Windows 10 back in November 2016 see Moving Beyond EMET, we have received lots of invaluable feedback from EMET customers and enthusiasts regarding the upcoming EMET end of life. Based on that feedback, we are excited to share...

6.9AI score
Exploits0
mmpc
mmpc
added 2017/07/18 1:0 p.m.91 views

Windows Defender Antivirus cloud protection service: Advanced real-time defense against never-before-seen malware

For cybercriminals, speed is the name of the game. It takes newly released malware an average of just four hours to achieve its goal—steal financial information, extort money, or cause widespread damage. In a recent report, the Federal Trade Commission FTC said that cybercriminals will use hacked...

6.7AI score
Exploits0
nvd
nvd
added 2017/07/17 5:29 p.m.23 views

CVE-2017-7532

In Moodle 3.x, course creators are able to change system default settings for courses...

6.5CVSS6.4AI score0.00874EPSS
Exploits0References2
prion
prion
added 2017/07/17 5:29 p.m.9 views

Default configuration

In Moodle 3.x, course creators are able to change system default settings for courses...

4CVSS6.3AI score0.00874EPSS
Exploits0References2Affected Software1
osv
osv
added 2017/07/17 5:29 p.m.4 views

UBUNTU-CVE-2017-7532

In Moodle 3.x, course creators are able to change system default settings for courses...

6.5CVSS6.6AI score0.00874EPSS
Exploits0References3
osv
osv
added 2017/07/17 5:29 p.m.22 views

CVE-2017-7532

In Moodle 3.x, course creators are able to change system default settings for courses...

6.5CVSS6.6AI score0.00874EPSS
Exploits0References2
ubuntucve
ubuntucve
added 2017/07/17 5:29 p.m.22 views

CVE-2017-7532

In Moodle 3.x, course creators are able to change system default settings for courses...

6.5CVSS6.6AI score0.00874EPSS
Exploits0References2
cve
cve
added 2017/07/17 4:0 p.m.60 views

CVE-2017-7532

CVE-2017-7532 affects Moodle 3.x. The issue, described as: “In Moodle 3.x, course creators are able to change system default settings for courses,” indicates improper privilege handling that lets non‑administrative users alter default course configurations. CVSS information included with the entr...

6.5CVSS6.2AI score0.00874EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2017/07/17 4:0 p.m.31 views

CVE-2017-7532

In Moodle 3.x, course creators are able to change system default settings for courses...

6.3AI score0.00874EPSS
Exploits0References2
mskb
mskb
added 2017/07/11 7:0 a.m.78 views

July 11, 2017—KB4025342 (OS Build 15063.483)

July 11, 2017—KB4025342 OS Build 15063.483 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed issue introduced by KB4022716where Internet Explorer 11 may close unexpectedly when you...

10CVSS7.4AI score0.7376EPSS
Exploits14
trendmicroblog
trendmicroblog
added 2017/06/28 4:1 p.m.28 views

The Law of Unintended Outbreak – Who Is at Risk from Petya?

Hot on the heels of the global WannaCry outbreak in May, yesterday saw a wave of what looked like copycat malware sweeping the globe again. However, on closer inspection there may more to this than meets the eye, more than a simple new variant of an already established ransomware borrowing...

7.1AI score
Exploits0
thn
thn
added 2017/06/28 5:18 a.m.25 views

Microsoft Adding Artificial-Intelligence Based Advanced Antivirus to Windows 10

Microsoft is making every effort to make its Windows operating system more secure and advanced than ever before by beefing up its security practices and hardening it against hackers and cyber attacks in its next release. With the launch of its Windows 10 Creator Update also known as RedStone 3,...

6.5AI score
Exploits0
mmpc
mmpc
added 2017/06/27 12:59 p.m.19 views

What’s new in Windows Defender ATP Fall Creators Update

When we introduced Windows Defender Advanced Threat Protection Windows Defender ATP, our initial focus was to reduce the time it takes companies to detect, investigate, and respond to advanced attacks. The Windows Fall Creators Update represents a new chapter in our product evolution as we offer ...

7AI score
Exploits0
mmpc
mmpc
added 2017/06/08 4:2 p.m.8 views

Windows 10 Creators Update provides next-gen ransomware protection

Multiple high-profile incidents have demonstrated that ransomware can have catastrophic effects on all of us. From personally losing access to your own digital property, to being impacted because critical infrastructure or health care services are unexpectedly unavailable for extended periods of...

7.1AI score
Exploits0
threatpost
threatpost
added 2017/04/11 6:19 p.m.149 views

Microsoft Patches Three Vulnerabilities Under Attack

Microsoft today patched a zero-day Word vulnerability that has been publicly attacked along with deploying fixes for Internet Explorer, Microsoft Edge and Windows 10. In all, nine Microsoft products received updates totaling 45 unique CVEs. Three of the vulnerabilities among Tuesday’s updates,...

9.3CVSS0.1AI score0.99933EPSS
Exploits29References13
Rows per page
Query Builder