26 matches found
Malicious code in astam-akif-dalimunak (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 614bd4bffb2dfee60047ea1585dff6b5d5a06f6ece161973e2c686c0f9d45523 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Microsoft Flags AI Phishing Attack Hiding in SVG Files
Microsoft Threat Intelligence detected a new AI-powered phishing campaign using LLMs to hide malicious code inside SVG files disguised as business dashboards...
Malicious code in @shizzy/jk (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware df90cac0b48a0b7c0a57f96ecabc807a0a4aa65550cca5ab8dad777e2801107a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
F-Secure BlackLight 2.2.1092 Local Privilege Escalation Vulnerability
Exploit for windows platform in category local exploits F-Secure BlackLight 2.2.1092 Local Privilege Escalation Vulnerability Vendor: F-Secure Corporation Product web page: http://www.f-secure.com http://www.f-secure.com/enEMEA-Labs/security-threats/tools/blacklight/ Affected version: 2.2.1092...
Mozilla Firefox / Thunderbird / Seamonkey buffer overflow
Buffer overflow on document.write and DOM insertion is used in-the-wile for hidden malware installation...
Microsoft Windows Explorer buffer overflow
Buffer overflow during right-click on .url file with oversized mhtml://mid: URL. Vulnerability can be used for hidden malware installation...
Microsoft MFC memory corruption
Memory corruption on RTF files parsing. Can be used for hidden malware installation...
Mozilla Firefox cross domain access
By using location.hostname='evil.comx00foo.example.com' in javascript it's possible to make request for foo.example.com domain to be sent to evil.com. It makes it possible cross-domain access. Vulnerability can be used for hidden malware installation...
Microsoft Internet Explorer multiple security vulnerabilities
Memory corruptions on COM objects instantiation and FTP server response parsing can be used for hidden malware installation...
Microsoft Excel 0-day vulnerability
Unknown vulnerability is used for hidden malware installation...
Microsoft Word 0-day vulnerabilities
Few unknown vulnerabilities are ussed for hidden malware installation...
Sun Java memory corruption
Memory corruption on GIF files parsing with 0 width block. Can be used for hidden malware installation...
Microsoft Word / Open Office 0-day security vulnerability
2 different unknown vulnerabilities are used for hidden malware installation...
Macromedia Flash Player buffer overflow
Buffer overflow on .swf files playing. Vulnerability can be used for hidden malware installation through browser...
Multiple Mozilla Firefox / Thunderbird / Seamonkey security vulnerabilities
Memory corruption, javascript code spoofing, code execution. May be used for hidden malware installation...
Microsoft Windows WebViewFolderIcon ActiveX (integer overflow)
Integer overflow can be used for hidden malware installation...
Microsoft Windows / Internet Explorer 0-day vulnerability
Microsoft Vector Graphics Rendering Library vulnerability is used for hidden malware installation...
Multiple Microsoft Internet Explorer security vulnerabilities
Crossite scripting, crossite information access, FTP commands injection. Vulnerabilities can be used for hidden malware installation...
Microsoft Word 2000 unknown vulnerability
Unknown security vulnerability is used hor hidden malware installation...
Multiple Microsoft Internet Explorer security vulnerabilities
Multiple memory corruptions, address bar spoofing, cross-frame data access. May be used for hidden malware installation...