129 matches found
EUVD-2018-4531
Malware in sbrugna...
EUVD-2017-17485
Malware in sbrugna...
CVE-2010-5144
The ISAPI Filter plug-in in Websense Enterprise, Websense Web Security, and Websense Web Filter 6.3.3 and earlier, when used in conjunction with a Microsoft ISA or Microsoft Forefront TMG server, allows remote attackers to bypass intended filtering and monitoring activities for web traffic via an...
The vulnerabilities of Microsoft Forefront Security and Microsoft Defender’s protection mechanisms allow attackers to execute arbitrary code.
The vulnerability of Microsoft Forefront Security and Microsoft Defender’s protection mechanisms against malicious programs is related to improper scanning of a specially created file. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...
KLA11860 PE vulnerability in Microsoft System Center
An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2020-1461 Related products Microsoft-Forefront-Protection Windows-Defender CVE list CVE-2020-1461 warning KB list Solution Insta...
KLA11747 Multiple vulnerabilities in Mycrosoft System Center
Multiple vulnerabilities were found in Mycrosoft System Center. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Defender can be exploited remotely via specially crafted comma...
CVE-2018-12571
uniquesig0/InternalSite/InitParams.aspx in Microsoft Forefront Unified Access Gateway 2010 allows remote attackers to trigger outbound DNS queries for arbitrary hosts via a comma-separated list of URLs in the origurl parameter, possibly causing a traffic amplification and/or SSRF outcome...
CVE-2018-12571
uniquesig0/InternalSite/InitParams.aspx in Microsoft Forefront Unified Access Gateway 2010 allows remote attackers to trigger outbound DNS queries for arbitrary hosts via a comma-separated list of URLs in the origurl parameter, possibly causing a traffic amplification and/or SSRF outcome...
Microsoft Forefront Unified Access Gateway 2010 External DNS Interaction
Exploit Title: Microsoft Forefront Unified Access Gateway 2010 External DNS Interaction Vendor Homepage: https://www.microsoft.com/ Version: 2010 CVE : CVE-2018-12571 Proof of Concept 1 Microsoft Forefront Unified Access Gateway 2010 allows remote attackers to trigger outbound DNS queries for...
Microsoft Threat Mgmt Gateway Firewall Client DNS Lookup Buffer Overflow - Ver2 (CVE-2011-1889)
A memory corruption vulnerability exists in Microsoft Forefront Threat Management Gateway. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2018-0986
A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability." This affects Windows Defender, Windows Intune...
Microsoft Malware Protection Engine < 1.1.14700.5 RCE
The version of Microsoft Malware Protection Engine MMPE installed on the remote Windows host is prior to 1.1.14700.5. It is, therefore, affected by a remote code execution vulnerability which could allow an attacker who successfully exploited this vulnerability to execute arbitrary code in the...
CVE-2017-11940
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Windows 7 SP1, Windows 8.1, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, 1709 and Windows Server 2016, Windows Server, version 1709, Microsoft Exchange Server 2013 and 2016, does not properl...
KLA11857 ACE vulnerability in Microsoft System Center
A remote code execution vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2017-11940 Related products Microsoft-System-Center-Virtual-Machine-Manager Microsoft-Forefront-Protection...
KLA11854 ACE vulnerability in Microsoft System Center
A remote code execution vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2017-11937 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details...
KLA11843 ACE vulnerability in Microsoft System Center
A remote code execution vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2017-8558 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such...
Microsoft Malware Protection Engine < 1.1.13903 RCE
The version of Microsoft Malware Protection Engine MMPE installed on the remote Windows host is prior to 1.1.13903.0. It is, therefore, affected by a remote code execution vulnerability due to improper handling of files during scanning. An unauthenticated, remote attacker can exploit this, via a...
Microsoft Malware Protection Engine Remote Code Execution Vulnerability (CNVD-2017-09504)
Microsoft Windows is a series of operating systems released by Microsoft, Microsoft Forefront is a set of enterprise-oriented server security features applied to it.Microsoft Defender is an antivirus software applied to it. A remote code execution vulnerability exists in Microsoft Forefront and...
Microsoft Malware Protection Engine Denial of Service Vulnerability
Microsoft Windows is a series of operating systems released by Microsoft, Microsoft Forefront is a set of enterprise-oriented server security features applied to it.Microsoft Defender is an antivirus software applied to it. A denial of service vulnerability exists in Microsoft Forefront and...
Microsoft Malware Protection Engine Denial of Service Vulnerability (CNVD-2017-09499)
Microsoft Windows is a series of operating systems released by Microsoft, Microsoft Forefront is a set of enterprise-oriented server security features applied to it.Microsoft Defender is an antivirus software applied to it. A denial of service vulnerability exists in Microsoft Forefront and...