57 matches found
EUVD-2021-14829
Malware in sbrugna...
EUVD-2005-3372
Malware in sbrugna...
EUVD-2005-3217
Malware in sbrugna...
EUVD-2012-1469
Malware in sbrugna...
EUVD-2006-4426
Malware in sbrugna...
CVE-2010-5159
Race condition in Dr.Web Security Space Pro 6.0.0.03100 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during...
DumpForums Claim 10TB Data Breach at Russian Cybersecurity Firm Dr.Web
Pro-Ukrainian hacktivists from DumpForums claim to have breached Russian cybersecurity giant Dr.Web, stealing over 10 TB of sensitive…...
CVE-2021-28130
Dr.Web Firewall 12.5.2.4160 on Windows incorrectly restricts applications signed by Dr.Web. A DLL for a custom payload within a legitimate binary e.g., frwlsvc.exe bypasses firewall filters...
Code injection
Dr.Web Firewall 12.5.2.4160 on Windows incorrectly restricts applications signed by Dr.Web. A DLL for a custom payload within a legitimate binary e.g., frwlsvc.exe bypasses firewall filters...
CVE-2021-28130
Summary of CVE-2021-28130 (Dr.Web Firewall): On Windows, Dr.Web Firewall 12.5.2.4160 improperly restricts applications signed by Dr.Web. A DLL used for a custom payload within a legitimate binary (for example frwl_svc.exe) can bypass firewall filters. This describes a bypass of firewall controls ...
CVE-2021-28130
Dr.Web Firewall 12.5.2.4160 on Windows incorrectly restricts applications signed by Dr.Web. A DLL for a custom payload within a legitimate binary e.g., frwlsvc.exe bypasses firewall filters...
Arbitrary File Read Vulnerability in Dr.Web Enterprise Security Suite
Doctor Web is a provider of anti-virus products and solutions. An arbitrary file read vulnerability exists in Dr. Web Enterprise Security Suite, which can be exploited by attackers to obtain sensitive information...
CVE-2020-23967
Dr.Web Security Space versions 11 and 12 allow elevation of privilege for local users without administrative privileges to NT AUTHORITY\SYSTEM due to insufficient control during autoupdate...
Privilege escalation
Dr.Web Security Space versions 11 and 12 allow elevation of privilege for local users without administrative privileges to NT AUTHORITY\SYSTEM due to insufficient control during autoupdate...
CVE-2020-23967
CVE-2020-23967 affects Dr.Web Security Space versions 11 and 12. Local users can escalate privileges to NT AUTHORITY\SYSTEM due to insufficient control during autoupdate. Documented impact is privilege escalation with high severity; exploitation status is not detailed in the provided sources. No ...
CVE-2020-23967
Dr.Web Security Space versions 11 and 12 allow elevation of privilege for local users without administrative privileges to NT AUTHORITY\SYSTEM due to insufficient control during autoupdate...
Dr.Web Security Space 数据伪造问题漏洞
Doctor Web Dr.Web Security Space is an application of the Russian company Doctor Web. Dr.Web Security Space is an application from the Russian company Doctor Web that provides a unified protection of all nodes of an enterprise network. A security vulnerability exists in Dr.Web Security Space...
Joker Malware Apps Once Again Bypass Google's Security to Spread via Play Store
Cybersecurity researchers took the wraps off yet another instance of Android malware hidden under the guise of legitimate applications to stealthily subscribe unsuspecting users for premium services without their knowledge. In a report published by Check Point research today, the malware —...
Tracing the Supply Chain Attack on Android
Earlier this month, Google disclosed that a supply chain attack by one of its vendors resulted in malicious software being pre-installed on millions of new budget Android devices. Google didn't exactly name those responsible, but said it believes the offending vendor uses the nicknames "Yehuo" or...
Popular Video Editing Software Website Hacked to Spread Banking Trojan
If you have downloaded the VSDC multimedia editing software between late February to late March this year, there are high chances that your computer has been infected with a banking trojan and an information stealer. The official website of the VSDC software — one of the most popular, free video...