Lucene search
K

238 matches found

ThreatPost
ThreatPost
added 2018/07/24 9:30 p.m.130 views

Kronos Banking Trojan Surfaces After Years of Silence

The Kronos banking trojan is back from the malware dustbin. After years of lying dormant, hackers have reworked the underlying code and are actively targeting victims in Germany, Japan and Poland. The latest variant has incorporated a new command-and-control feature designed to work with the Tor...

9.3CVSS8.4AI score0.99945EPSS
Exploits33References4
BDU FSTEC
BDU FSTEC
added 2018/04/12 12:0 a.m.6 views

The vulnerability of the Equation Editor component in the Microsoft Office software package allows a hacker to execute arbitrary code.

The vulnerability of the Equation Editor component in the Microsoft Office software package arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.3CVSS6.2AI score0.19727EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2018/04/12 12:0 a.m.6 views

The vulnerability of the Equation Editor component in the Microsoft Office software package allows a hacker to execute arbitrary code.

The vulnerability of the Equation Editor component in the Microsoft Office software package arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.3CVSS6.2AI score0.18641EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2018/04/12 12:0 a.m.6 views

The vulnerability of the Equation Editor component in the Microsoft Office software package allows a hacker to execute arbitrary code.

The vulnerability of the Equation Editor component in the Microsoft Office software package arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.3CVSS6.2AI score0.20489EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2018/04/12 12:0 a.m.7 views

The vulnerability of the Equation Editor component in the Microsoft Office software package allows a hacker to execute arbitrary code.

The vulnerability of the Equation Editor component within the Microsoft Office software package arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.3CVSS6.2AI score0.18641EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2018/04/09 6:35 p.m.152 views

Word Attachment Delivers FormBook Malware, No Macros Required

A new wave of document attacks targeting inboxes do not require enabling macros in order for adversaries to trigger an infection chain that ultimately delivers FormBook malware. Researchers at Menlo Security are reporting a wave of attacks that began last month that are targeting financial and...

9.3CVSS0.5AI score0.99945EPSS
Exploits47References6
ThreatPost
ThreatPost
added 2018/03/10 10:30 a.m.16 views

Cyber Espionage Campaign ‘Slingshot’ Targets Victims Via Routers

CANCUN, Mexico – Researchers have uncovered a new cyber-espionage threat, dubbed Slingshot, that targets routers and uses them as a springboard to attack computers within a network. Kaspersky Lab, which released details of its discovery during its Security Analyst Summit on Friday, said that the...

7.6AI score
Exploits0References2
Fedora
Fedora
added 2018/02/26 4:54 p.m.61 views

[SECURITY] Fedora 27 Update: php-phpmyadmin-motranslator-4.0-1.fc27

Translation API for PHP using Gettext MO files. Features All strings are stored in memory for fast lookup Fast loading of MO files Low level API for reading MO files Emulation of Gettext API No use of eval for plural equation Limitations Not suitable for huge MO files which you don't want to stor...

5.4CVSS0.2AI score0.01618EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2018/02/21 12:0 a.m.9 views

The vulnerability of the editor for mathematical formulas and equations in the Microsoft Word text editor, as well as in the Microsoft Office suite of programs and the Microsoft Office Compatibility Pack, allows a perpetrator to execute arbitrary code.

The vulnerability of the editor for mathematical formulas and equations in the Microsoft Word text editor, as well as in the Microsoft Office suite of programs and the Microsoft Office Compatibility Pack, arises due to an operation that goes beyond the buffer in memory. Exploiting this...

9.3CVSS6.2AI score0.23877EPSS
Exploits0References4
ThreatPost
ThreatPost
added 2018/02/15 12:31 p.m.98 views

Word-based Malware Attack Doesn’t Use Macros

Typically, inbox-based attacks that include malicious Microsoft Office attachments require adversaries to trick users into enabling macros. But researchers say they have identified a new malicious email campaign that uses booby-trapped Office attachments that are macro-free. The attacks do not...

9.3CVSS0.99945EPSS
Exploits33References4
CNVD
CNVD
added 2018/01/23 12:0 a.m.2 views

Microsoft Office Memory Corruption Vulnerability (CNVD-2018-02184)

Microsoft Office 2003 and so on are the United States Microsoft Microsoft company developed an office software suite of products.Equation Editor is one of the formula editor. A memory corruption vulnerability exists in Equation Editor in Microsoft Office, which arises from the program failing to...

9.3CVSS7.1AI score0.18641EPSS
Exploits0References1
CNVD
CNVD
added 2018/01/23 12:0 a.m.2 views

Microsoft Office Memory Corruption Vulnerability (CNVD-2018-02183)

Microsoft Office 2003 and so on are the United States Microsoft Microsoft company developed an office software suite of products.Equation Editor is one of the formula editor. A memory corruption vulnerability exists in Equation Editor in Microsoft Office, which arises from the program failing to...

9.3CVSS7.1AI score0.18641EPSS
Exploits0References1
CNVD
CNVD
added 2018/01/23 12:0 a.m.2 views

Microsoft Office Memory Corruption Vulnerability (CNVD-2018-02186)

Microsoft Office 2003 and so on are the United States Microsoft Microsoft company developed an office software suite of products.Equation Editor is one of the formula editor. A memory corruption vulnerability exists in Equation Editor in Microsoft Office, which arises from the program failing to...

9.3CVSS7.1AI score0.20489EPSS
Exploits0References1
CNVD
CNVD
added 2018/01/23 12:0 a.m.2 views

Microsoft Office Memory Corruption Vulnerability (CNVD-2018-02190)

Microsoft Office 2003 and so on are the United States Microsoft Microsoft company developed an office software suite of products.Equation Editor is one of the formula editor. A memory corruption vulnerability exists in Equation Editor in Microsoft Office, which arises from the program failing to...

9.3CVSS7.1AI score0.19727EPSS
Exploits0References1
Prion
Prion
added 2018/01/22 11:29 p.m.29 views

Remote code execution

Equation Editor in Microsoft Office 2003, Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Word Remote Code Execution Vulnerability". This CVE is...

9.3CVSS8.4AI score0.24582EPSS
Exploits0References2Affected Software3
Prion
Prion
added 2018/01/22 11:29 p.m.21 views

Remote code execution

Equation Editor in Microsoft Office 2003, Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Word Remote Code Execution Vulnerability". This CVE is...

9.3CVSS8.4AI score0.24582EPSS
Exploits0References2Affected Software3
Prion
Prion
added 2018/01/22 11:29 p.m.26 views

Remote code execution

Equation Editor in Microsoft Office 2003, Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Word Remote Code Execution Vulnerability". This CVE is...

9.3CVSS8.4AI score0.24582EPSS
Exploits0References2Affected Software3
NVD
NVD
added 2018/01/22 11:29 p.m.21 views

CVE-2018-0862

Equation Editor in Microsoft Office 2003, Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Word Remote Code Execution Vulnerability". This CVE is...

9.3CVSS8.4AI score0.18641EPSS
Exploits0References2
Prion
Prion
added 2018/01/22 11:29 p.m.30 views

Remote code execution

Equation Editor in Microsoft Office 2003, Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Word Remote Code Execution Vulnerability". This CVE is...

9.3CVSS8.4AI score0.24582EPSS
Exploits0References2Affected Software3
NVD
NVD
added 2018/01/22 11:29 p.m.24 views

CVE-2018-0849

Equation Editor in Microsoft Office 2003, Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Word Remote Code Execution Vulnerability". This CVE is...

9.3CVSS8.4AI score0.18641EPSS
Exploits0References2
Rows per page
Query Builder