Black Hat: Novel DNS Hack Spills Confidential Corp Data

LAS VEGAS – Amazon and Google patched a domain name service DNS bug that allowed attackers to snoop on the confidential networking settings of companies – revealing computer and employee names along with office locations and exposed web resources. The vulnerability, outlined in a Black Hat USA 20...

Triaging a DLL planting vulnerability

DLL planting aka binary planting/hijacking/preloading resurface every now and then, it is not always clear on how Microsoft will respond to the report. This blog post will try to clarify the parameters considered while triaging DLL planting issues. It is well known that when an application loads ...

CVE-2017-8625: use a custom CHM file to bypass the Windows 10 Device Guard-vulnerability warning-the black bar safety net

Device Guard is what? Device Guard will Windows 10 operating systemis limited to run only by the trusted person who signed the signature of the application program, this function helps protect against 0day attacks, and also can effectively deal with a polymorphic virus challenge. It is a hardware...

Windows exposure“redirect SMB”vulnerability, the impact of Win10, including all versions-bug warning-the black bar safety net

Recently Cylance company released a Windows System to serious vulnerability, the attacker via the exploit can steal user authentication information. The vulnerability includes the latest Windows 1 0 preview version, including all versions of Windows, as well as Adobe, Apple, Box, Oracle, Symantec...

Internet Explorer Uninitialized Memory Corruption Vulnerability - CVE-2010-3331

Dear List, I'm writing on behalf of the Check Point Vulnerability Discovery Team to publish the following vulnerability. Check Point Software Technologies - Vulnerability Discovery Team VDT http://www.checkpoint.com/defense/ Internet Explorer Uninitialized Memory Corruption Vulnerability...

iDefense Security Advisory 04.03.07: Microsoft Windows WMF Triggerable Kernel Design Error DoS Vulnerability

Microsoft Windows WMF Triggerable Kernel Design Error DoS Vulnerability iDefense Security Advisory 04.03.07 http://labs.idefense.com/intelligence/vulnerabilities/ Apr 03, 2007 I. BACKGROUND The Microsoft Windows kernel controls which processes are allowed to run and is responsible for accessing...

[Full-Disclosure] Multiple vulnerabilities in w3who ISAPI DLL

Exaprobe www.exaprobe.com Security Advisory Advisory Name: Multiple vulnerabilities in w3who Release Date: 6 December 2004 Application: Microsoft ISAPI extension w3who.dll Platform: Windows 2000/XP Resource Kit Severity: Remote code execution Author: Nicolas Gregoire [email protected] Vendor...

IEbug.txt

Hi, I found a bug in IE6 ón Windows XP with all Service Packs and Patches installed: If you enter C:\aux in the adressline of the IE not EXPLORER, InternetExplorer and hit enter, the window will freeze. This bug is simmilar to C:\con\con but not as dagerous. But its the same reason, naimly that...

NT user (who is locked changing his/her password by administrator ) can bypass the security policy and Change the password.

Hi, Our PT team found the following vulnerability in security policy implementation with NT Server and IIS 4.0. NT user who is locked changing his/her password by administrator can bypass the security policy and Change the password. Vulnerable: Microsoft Windows NT Server 4.0 + IIS 4.0 + Service...

Windows 2000 SIDHistory Escalation Attack

Russ, I know that this topic was brought up a few weeks ago, but we have been doing some research internally on this issue and have reached some disturbing conclusions. First of all, when Microsoft introduced the Windows 2000 domains within a forest structure, the domains were introduced as...

Microsoft Visual Studio VB-TSQL debugger object vbsdicli.exe contains buffer overflow via NewSPID method

Overview A vulnerability in an object included with Visual Studio 6.0 Enterprise Edition may allow an attacker to execute code with the privileges of an interactively logged in user. Description The VB-TSQL debugger object included in Visual Studio 6.0 Enterprise Edition contains a buffer overflo...