EUVD-2000-0276

Malware in sbrugna...

OfflRouter Malware Evades Detection in Ukraine for Almost a Decade

Select Ukrainian government networks have remained infected with a malware called OfflRouter since 2015. Cisco Talos said its findings are based on an analysis of over 100 confidential documents that were infected with the VBA macro virus and uploaded to the VirusTotal malware scanning platform...

At long last, Microsoft is disabling Excel 4.0 macros by default

Sometimes good news in the security world comes unexpectedly. This is one of those times. After three decades of macro viruses, and three decades of trying to convince every single Excel user individually to disable macros, Microsoft is going disable Excel 4.0 macros for everyone. Better late tha...

CVE-2019-14422

An issue was discovered in in TortoiseSVN 1.12.1. The Tsvncmd: URI handler allows a customised diff operation on Excel workbooks, which could be used to open remote workbooks without protection from macro security settings to execute arbitrary code. A tsvncmd:command:diff?path:file1?path2:file2 U...

Microsoft Office Word Malicious Macro Execution

This module injects a malicious macro into a Microsoft Office Word document docx. The comments field in the metadata is injected with a Base64 encoded payload, which will be decoded by the macro and execute as a Windows executable. For a successful attack, the victim is required to manually enabl...

Apache OpenOffice Text Document Malicious Macro Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex/zip' require 'cgi' class MetasploitModule "Apache OpenOffice Text Document Malicious Macro Execution", 'Description' = %q This module...

Microsoft Office Word Malicious Macro Execution Exploit

This Metasploit module generates a macro-enabled Microsoft Office Word document. The comments metadata in the data is injected with a Base64 encoded payload, which will be decoded by the macro and execute as a Windows executable. For a successful attack, the victim is required to manually enable...

Microsoft Office Word Malicious Macro Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'rex/zip' class MetasploitModule "Microsoft Office Word Malicious Macro Execution", 'Description' = %q This module generates a macro-enabled...

CVE-2002-1776

Symantec Norton AntiVirus 2002 is affected by CVE-2002-1776. The issue allows remote attackers to bypass virus protection via a Word Macro virus with a .nch or .dbx extension, which is automatically recognized and executed as a Microsoft Office document. The vendor disputes the claim, noting that...

CVE-2002-1776

NOTE: this issue has been disputed by the vendor. Symantec Norton AntiVirus 2002 allows remote attackers to bypass virus protection via a Word Macro virus with a .nch or .dbx extension, which is automatically recognized and executed as a Microsoft Office document. NOTE: the vendor has disputed th...

access.vba.txt

Microsoft Access Trojan VBA code: The overlooked "macro virus" -- Brief Summary: Microsoft Access Databases are not afforded "Macro execution protection" in the manner of Word/Excel/Powerpoint documents. Attackers can insert trojan VBA code into MS Access documents to execute arbitrary commands o...

CVE-2000-0277

Microsoft Excel 97/2000 are affected by the XLM Text Macro vulnerability, where Excel fails to warn when macros in external text files are executed, potentially allowing arbitrary commands via a macro virus. The issue occurs when references to external XLM macro files are present; Excel may not d...

win98-bluescreen.txt

=-= Next Generation of Windows 98 Blues Screen 2 =-= By RUBINHOC from BraZiL Original exploit found by www.securax.org Only for: ruindows 98 maybe 95 too. Techniques: NEW - Infernal Pulse 03/17/2000 =-= WIN98 webservers =-= customized by RUBINHOC rubinhoc:roottelnet victim.com 80 Trying x.x.x.x...

CVE-2000-0277

Microsoft Excel 97 and 2000 does not warn the user when executing Excel Macro Language XLM macros in external text files, which could allow an attacker to execute a macro virus, aka the "XLM Text Macro" vulnerability...

excel.macro.virus.patch.flaw.txt

Date: Thu, 13 May 1999 16:12:48 -0400 From: rotaiv To: [email protected] Subject: Re: Microsoft Security Bulletin MS99-014 -----BEGIN PGP SIGNED MESSAGE----- This is in response to the Microsoft Security Bulletin MS99-014. On 3/29/99 I posted a message to BugTraq titled, "Bypassing Excel Macro...

melissa.txt

http://www.melissavirus.com/ ----------------------------------------------------------------- Date: Mon, 5 Apr 1999 05:01:14 -0700 From: [email protected] Subject: Information Security Educators Mailing List 1999-03-30 --------------------------------------------- From: "Rob Slade, doting grandpa o...

melissa.macro.virus.txt

Date: Fri, 26 Mar 1999 17:05:51 -0800 From: Aleph One To: [email protected] Subject: Melissa Macro Virus I normally don't allow virus posts through the list as they seldom represent a new threat, just a new example of an already existing one, but this one is getting enough play to warrant a...

excel.macro.virus.protect.txt

Date: Mon, 29 Mar 1999 12:51:09 -0500 From: rotaiv To: [email protected] Subject: Bypassing Excel Macro Virus Protection -----BEGIN PGP SIGNED MESSAGE----- With the sudden attention macro viruses have received over the weekend, I thought I would share a couple of items I find concerning with...