22 matches found
EUVD-2019-9714
Malware in sbrugna...
EUVD-2022-7052
Malicious code in bioql PyPI...
Unmasking ViperSoftX: In-Depth Defense Strategies Against AutoIt-Powered Threats
Trellix Global Defenders: Unmasking ViperSoftX: In-Depth Defense Strategies Against AutoIt-Powered Threats By James Murphy · August 29, 2024 There’s a common misconception that threat actors must always write complicated and custom code in every piece of their malware, skilfully evading defenses,...
CVE-2022-43401
A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Script Security Plugin 1183.v774b0b0aa451 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection a...
CVE-2022-43402
A sandbox bypass vulnerability involving various casts performed implicitly by the Groovy language runtime in Jenkins Pipeline: Groovy Plugin 2802.v5ea628154bc2 and earlier allows attackers with permission to define and run sandboxed scripts, including Pipelines, to bypass the sandbox protection...
The vulnerability of the ` PharMakeDirstream` function in the PHP interpreter allows a hacker to trigger a service failure or potentially cause other effects.
The vulnerability of the PharMakeDirstream function in the PHP interpreter relates to access to an uninitialized pointer. Exploiting this vulnerability could allow a malicious actor to cause service failures or potentially have other adverse effects...
February 8, 2022-KB5009470 Cumulative Update for .NET Framework 3.5 and 4.8 for Microsoft server operating system version 21H2
February 8, 2022-KB5009470 Cumulative Update for .NET Framework 3.5 and 4.8 for Microsoft server operating system version 21H2 Release Date: February 8, 2022 Version: .NET Framework 3.5 and 4.8 The February 8, 2022 update for Microsoft server operating system version 21H2 includes cumulative...
August 10, 2021-KB5004752 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server, version 2016
August 10, 2021-KB5004752 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server, version 2016 Release Date: August 10, 2021 Version: .NET Framework 4.8 The August 10, 2021 update for Windows 10, version 1607 and Windows Server, version 2016 includes cumulative...
September 8, 2020-KB4576480 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1703
September 8, 2020-KB4576480 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1703 Release Date: September 8, 2020 Version: .NET Framework 4.8 Summary Security improvementsClickOnce will no longer download applications from untrusted servers which use NTLM authentication, but,...
October 24, 2019-KB4519573 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1903 and Windows Server 1903 RTM and Windows 10, version 1909 and Windows Server, version 1909
October 24, 2019-KB4519573 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1903 and Windows Server 1903 RTM and Windows 10, version 1909 and Windows Server, version 1909 Release Date: October 24, 2019 Version: .NET Framework 3.5 and 4.8 The October 24, 2019 update for...
Microsoft .NET Framework Privilege Escalation Vulnerability (KB4514354)
This host is missing an important security update according to Microsoft KB4514354 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...
CVE-2019-1083
A denial of service vulnerability exists when Microsoft Common Object Runtime Library improperly handles web requests, aka '.NET Denial of Service Vulnerability'...
Description of the Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012 (KB 4459932)
Description of the Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012 KB 4459932 Applies to: Microsoft .NET Framework 3.5 Notice This update is included in the Preview of Quality Rollup that's dated November 27, 2018. This update was previously released as part of the...
Design/Logic Flaw
The Common Language Runtime CLR in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 on 64-bit platforms does not properly allocate arrays of structures, which allows remote attackers to execute arbitrary code via a crafted .NET Framework application that changes array data, aka "Array...
CVE-2013-3134
CVE-2013-3134 is a remote code execution vulnerability in the Common Language Runtime (CLR) of Microsoft .NET Framework on 64-bit platforms. The issue arises from how the CLR allocates arrays of structures, permitting an attacker to craft a .NET application that alters array data to execute arbit...
CVE-2013-3134
The Common Language Runtime CLR in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 on 64-bit platforms does not properly allocate arrays of structures, which allows remote attackers to execute arbitrary code via a crafted .NET Framework application that changes array data, aka "Array...
CVE-2013-1336
The Common Language Runtime CLR in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, and 4.5 does not properly check signatures, which allows remote attackers to make undetected changes to signed XML documents via unspecified vectors that preserve signature validity, aka "XML Digital Signature...
CVE-2010-1898
CVE-2010-1898 is a remote code execution vulnerability in the Microsoft .NET CLR handling delegates to virtual methods, affecting CLR-based apps and Silverlight. The issue enables arbitrary code execution via three attack scenarios: XBAPs (XAML browser applications), ASP.NET pages, or standalone ...
Microsoft .NET Common Language Runtime Remote Code Execution Vulnerability (2265906)
This host is missing a critical security update according to Microsoft Bulletin MS10-060. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
[SECURITY] Fedora 13 Update: mono-basic-2.6.2-1.fc13
This package contains the Visual Basic .NET compiler and language runtime. This allows you to compile and run VB.NET application and assemblies...