Lucene search
K

6 matches found

0day.today
0day.today
added 2015/02/05 12:0 a.m.53 views

Malwarebytes Anti-Malware / Anti-Exploit Update Remote Code Execution Exploit

This Metasploit module exploits a vulnerability in the update functionality of Malwarebytes Anti-Malware consumer before 2.0.3 and Malwarebytes Anti-Exploit consumer 1.03.1.1220. Due to the lack of proper update package validation a man-in-the-middle attacker could execute arbitrary code by...

9.3CVSS0.7AI score0.16784EPSS
Exploits6
Metasploit
Metasploit
added 2015/02/03 8:8 p.m.42 views

Malwarebytes Anti-Malware and Anti-Exploit Update Remote Code Execution

This module exploits a vulnerability in the update functionality of Malwarebytes Anti-Malware consumer before 2.0.3 and Malwarebytes Anti-Exploit consumer 1.03.1.1220. Due to the lack of proper update package validation, a man-in-the-middle MITM attacker could execute arbitrary code by spoofing t...

9.3CVSS7AI score0.16784EPSS
Exploits6
OpenVAS
OpenVAS
added 2015/01/02 12:0 a.m.43 views

Malwarebytes Anti-Malware < 2.0.3 'Upgrade' MITM Vulnerability - Windows

Malwarebytes Anti-Malware is prone to a man-in-the-middle MITM vulnerability through it SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.3CVSS6.3AI score0.16784EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2015/01/02 12:0 a.m.27 views

Malwarebytes Anti-Exploit < 1.04.1.1012 'Upgrade' MITM Vulnerability - Windows

Malwarebytes Anti-Exploit is prone to a man-in-the-middle MITM vulnerability through it SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.3CVSS6.3AI score0.16784EPSS
Exploits6References2
CVE
CVE
added 2014/12/16 6:0 p.m.53 views

CVE-2014-4936

CVE-2014-4936 affects Malwarebytes Anti-Malware (MBAM) consumer pre-2.0.3 and Malwarebytes Anti-Exploit (MBAE) consumer ≤1.04.1.1012. Multiple public and security feeds describe a MITM vulnerability in the update mechanism: an attacker spoofing the update server can upload and execute arbitrary c...

9.3CVSS7.4AI score0.16784EPSS
Exploits6References2Affected Software1
Circl
Circl
added 2014/12/16 12:0 a.m.25 views

CVE-2014-4936

creationtimestamp| type| source ---|---|--- 2014-12-16 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41701 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/malwarebytesupdateexec.rb 2025-02-06...

9.3CVSS5.5AI score0.16784EPSS
Exploits6References2
Rows per page
Query Builder