26 matches found
Fake Booking Emails Redirect Hotel Staff to Fake BSoD Pages Delivering DCRat
--- Source: Securonix Cybersecurity researchers have disclosed details of a new campaign dubbed PHALTBLYX that has leveraged ClickFix-style lures to display fixes for fake blue screen of death BSoD errors in attacks targeting the European hospitality sector. The end goal of the multi-stage campai...
dotnet: .NET Denial of Service Vulnerability
A flaw was found in MSBuild’s temporary directory handling on Linux where predictable, non-randomized temporary paths are used. Local users can create or manipulate those paths before MSBuild runs, causing build failures or unexpected behavior and resulting in denial of service for build operatio...
dotnet: .NET Denial of Service Vulnerability
A flaw was found in MSBuild’s temporary directory handling on Linux where predictable, non-randomized temporary paths are used. Local users can create or manipulate those paths before MSBuild runs, causing build failures or unexpected behavior and resulting in denial of service for build operatio...
dotnet: .NET Denial of Service Vulnerability
A flaw was found in MSBuild’s temporary directory handling on Linux where predictable, non-randomized temporary paths are used. Local users can create or manipulate those paths before MSBuild runs, causing build failures or unexpected behavior and resulting in denial of service for build operatio...
GHSA-W3Q9-FXM7-J8FQ Microsoft Security Advisory CVE-2025-55247 | .NET Denial of Service Vulnerability
Microsoft Security Advisory CVE-2025-55247 | .NET Denial of Service Vulnerability Executive summary Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 8.0.xxx, .NET 9.0.xxx and .NET 10.0.xxx. This advisory also provides guidance on what developers c...
Microsoft Security Advisory CVE-2025-55247 | .NET Denial of Service Vulnerability
Microsoft Security Advisory CVE-2025-55247 | .NET Denial of Service Vulnerability Executive summary Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 8.0.xxx, .NET 9.0.xxx and .NET 10.0.xxx. This advisory also provides guidance on what developers c...
dotnet: .NET Denial of Service Vulnerability
A flaw was found in MSBuild’s temporary directory handling on Linux where predictable, non-randomized temporary paths are used. Local users can create or manipulate those paths before MSBuild runs, causing build failures or unexpected behavior and resulting in denial of service for build operatio...
dotnet: .NET Denial of Service Vulnerability
A flaw was found in MSBuild’s temporary directory handling on Linux where predictable, non-randomized temporary paths are used. Local users can create or manipulate those paths before MSBuild runs, causing build failures or unexpected behavior and resulting in denial of service for build operatio...
dotnet: .NET Denial of Service Vulnerability
A flaw was found in MSBuild’s temporary directory handling on Linux where predictable, non-randomized temporary paths are used. Local users can create or manipulate those paths before MSBuild runs, causing build failures or unexpected behavior and resulting in denial of service for build operatio...
dotnet: .NET Denial of Service Vulnerability
A flaw was found in MSBuild’s temporary directory handling on Linux where predictable, non-randomized temporary paths are used. Local users can create or manipulate those paths before MSBuild runs, causing build failures or unexpected behavior and resulting in denial of service for build operatio...
dotnet: .NET Denial of Service Vulnerability
A flaw was found in MSBuild’s temporary directory handling on Linux where predictable, non-randomized temporary paths are used. Local users can create or manipulate those paths before MSBuild runs, causing build failures or unexpected behavior and resulting in denial of service for build operatio...
CVE-2025-55247
A flaw was found in MSBuild’s temporary directory handling on Linux where predictable, non-randomized temporary paths are used. Local users can create or manipulate those paths before MSBuild runs, causing build failures or unexpected behavior and resulting in denial of service for build...
Turla’s Tiny Backdoor Exploits MSBuild to Evade Detection
...
.NET 8.0 security update
8.0.103-2.0.1 - Update to .NET SDK 8.0.103 and Runtime 8.0.3 - Disable checking the signature of the last certificate in a chain if the certificate is supposedly self-signed. - Resolves: RHEL-25254 - Backport MSBuild locale fix - Resolves: RHEL-23936...
.NET 8.0 security update
8.0.103-1.0.1 - Update to .NET SDK 8.0.103 and Runtime 8.0.3 - Backport MSBuild locale fix...
Malicious NuGet Packages Caught Distributing SeroXen RAT Malware
Cybersecurity researchers have uncovered a new set of malicious packages published to the NuGet package manager using a lesser-known method for malware deployment. Software supply chain security firm ReversingLabs described the campaign as coordinated and ongoing since August 1, 2023, while linki...
Malicious code in msbuild-sdks (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 162783ba3eaa253bb7d50f7d65ea470a0f477435f6755c200252a0d5649d523d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-4725 Malicious code in msbuild-sdks (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 162783ba3eaa253bb7d50f7d65ea470a0f477435f6755c200252a0d5649d523d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
WMEye - A Post Exploitation Tool That Uses WMI Event Filter And MSBuild Execution For Lateral Movement
WMEye is an experimental tool that was developed when exploring about Windows WMI. The tool is developed for performing Lateral Movement using WMI and remote MSBuild Execution. It uploads the encoded/encrypted shellcode into remote targets WMI Class Property, create an event filter that when...
aMALgamous
This repository is an offensive tool for creating custom malware payloads. It is a Python-based tool that allows users to generate various types of malware payloads, including Meterpreter, Shell, and Python payloads, as well as payloads for specific platforms such as Windows and macOS. The tool i...