147 matches found
CVE-2018-10018
The GDASPAMLib.AntiSpam ActiveX control ASK\GDASpam.dll in G DATA Total Security 25.4.0.3 has a buffer overflow via a long IsBlackListed argument...
CVE-2018-10018
The CVE-2018-10018 entry concerns G DATA Total Security 25.4.0.3, where the GDASPAMLib.AntiSpam ActiveX control (ASK\GDASpam.dll) suffers a buffer overflow triggered by a long IsBlackListed argument. The issue affects the ActiveX component within the Total Security suite; impact is described as p...
G DATA TOTAL SECURITY 25.4.0.3 Active-X Buffer Overflow
===== Tempest Security Intelligence - ADV-24/2018 === G DATA TOTAL SECURITY v25.4.0.3 Activex Buffer Overflow Author: Filipe Xavier Oliveira Tempest Security Intelligence - Recife, Pernambuco - Brazil ===== Table of Contents ===================================================== Overview Detailed...
G DATA Total Security 25.4.0.3 - Activex Buffer Overflow Exploit
Exploit for windows platform in category dos / poc 'for debugging/custom prolog targetFile = "C:\Program Files\G DATA\TotalSecurity\ASK\GDASpam.dll" prototype = "Function IsBlackL...
G DATA Total Security 25.4.0.3 - Activex Buffer Overflow
'for debugging/custom prolog targetFile = "C:\Program Files\G DATA\TotalSecurity\ASK\GDASpam.dll" prototype = "Function IsBlackListed ByVal strIP As String As Long" memberName = "IsBl...
G DATA Total Security 25.4.0.3 - Activex Buffer Overflow
G DATA Total Security 25.4.0.3 - Activex Buffer Overflow 'for debugging/custom prolog targetFile = "C:\Program Files\G DATA\TotalSecurity\ASK\GDASpam.dll" prototype = "Function IsBlackListed ByVal strIP As String As Long" m...
CVE-2014-3752
The MiniIcpt.sys driver in G Data TotalProtection 2014 24.0.2.1 and earlier allows local users with administrator rights to execute arbitrary code with SYSTEM privileges via a crafted 0x83170180 call...
Code injection
The MiniIcpt.sys driver in G Data TotalProtection 2014 24.0.2.1 and earlier allows local users with administrator rights to execute arbitrary code with SYSTEM privileges via a crafted 0x83170180 call...
CVE-2014-3752
The CVE-2014-3752 entry details a local privilege escalation affecting G Data TotalProtection 2014 (versions up to 24.0.2.1). The vulnerability resides in the MiniIcpt.sys driver, where a crafted 0x83170180 call allows local users with administrator rights to execute arbitrary code with SYSTEM pr...
CVE-2014-3752
The MiniIcpt.sys driver in G Data TotalProtection 2014 24.0.2.1 and earlier allows local users with administrator rights to execute arbitrary code with SYSTEM privileges via a crafted 0x83170180 call...
G-Data DLL Hijacking
Hi @ll, the executable installers of G-Data's "security" products for Windows, available from , allow escalation of privilege! The downloadable executables are self-extractors containing the real executable installer as resource: they create the subdirectory...
G DATA INTERNET SECURITY light - Base64 encoded String, Customized SSL, Dangerous filesystem permissions vulnerabilities
HackApp vulnerability scanner discovered that application G DATA INTERNET SECURITY light published at the 'play' market has multiple vulnerabilities...
Malicious Minecraft apps affect 600,000 Android Users
So you love Minecraft? You might want to be very careful before downloading the cheats for the popular Minecraft game from Google Play Store. Nearly 3 Million users have downloaded malicious Minecraft Android applications for their smartphone and tablets from the Google Play store, security...
Powerful Linux Trojan 'Turla' Infected Large Number of Victims
Security researchers have discovered a highly nasty Linux trojan that has been used by cybercriminals in state sponsored attack in order to steal personal, confidential information from government institutions, military and pharmaceutical companies around the world. A previously unknown piece of ...
G Data TotalCare 2011 0day Local Kernel Exploit
No description provided by source. / Exploit Title: G Data TotalCare 2011 0day Local Kernel Exploit Date: 2010-11-08 Author: Nikita Tarakanov CISS Research Team Software Link: http://www.gdata.de/ Version: up to date, version 21.1.0.5, MiniIcpt.sys version 1.0.8.9 Tested on: Win XP SP3 CVE :...
G Data TotalCare 2011 NtOpenKey Race Condition Vulnerability
No description provided by source. 1.Description: The HookCentre.sys kernel driver distributed with G Data TotalCare 2011 contains a race condition vulnerability in the handling arguments of NtOpenkey function. Exploitation of this issue allows an attacker to crash systemmake infamous BSoD or gai...
Chinese Android Smartphone comes with Pre-installed Spyware
If US has banned its several major government departments, including NASA, Justice and Commerce Departments, from purchasing Chinese products and computer technology due to suspected backdoors, then they are not wrong at all. A popular Chinese Android Smartphone comes pre-installed with a Trojan...
Android Malware Mines Digital Cryptocurrency
On its surface, the idea of turning a smartphone into a cryptocurrency mining machine sounds novel. But practical and profitable? Not so much. That hasn’t stopped thieves from corrupting a number of popular Android applications for just that purpose, including two on the Google Play store called...
Uroburos Rootkit: Most sophisticated 3-year-old Russian Cyber Espionage Campaign
The Continuous Growth of spyware, their existence, and the criminals who produce & spread them are increasing tremendously. It’s difficult to recognize spyware as it is becoming more complex and sophisticated with time, so is spreading most rapidly as an Internet threat. Recently, The security...
CVE-2010-5162
Race condition in G DATA TotalCare 2010 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler...