Solving one of NOBELIUM’s most novel attacks: Cyberattack Series

Our story begins with eight Microsoft Detection and Response Team DART analysts gathered around a customer’s conference room to solve a cybersecurity mystery. Joined by members of the customer’s cybersecurity team, they were there to figure out how a Russia-based nation-state hacking group known ...

Solving one of NOBELIUM’s most novel attacks: Cyberattack Series

Our story begins with eight Microsoft Detection and Response Team DART analysts gathered around a customer’s conference room to solve a cybersecurity mystery. Joined by members of the customer’s cybersecurity team, they were there to figure out how a Russia-based nation-state hacking group known ...

App Layering - 2206 WMI applications relying on the Global Assembly Cache (GAC) fail to run.

WMI applications no longer work after upgrading to App Layering 2206. Specifically anything that uses the GACMSIL directory...

.NET Framework EncoderParameter Integer Overflow Vulnerability

No description provided by source. ------------------------------------------------------------------------ .NET Framework EncoderParameter integer overflow vulnerability ------------------------------------------------------------------------ Yorick Koster, September 2011...

CVE-2008-5100

The strong name SN implementation in Microsoft .NET Framework 2.0.50727 relies on the digital signature Public Key Token embedded in the pathname of a DLL file instead of the digital signature of this file itself, which makes it easier for attackers to bypass Global Assembly Cache GAC and Code...

CVE-2008-5100

CVE-2008-5100 concerns the strong name (SN) implementation in Microsoft .NET Framework 2.0.50727 . The description in multiple connected sources states that SN validation relies on the Public Key Token embedded in the DLL’s pathname rather than the file’s own digital signature. This design flaw c...