EUVD-2018-4963

Malware in sbrugna...

Attackers Abuse Velociraptor Forensic Tool to Deploy Visual Studio Code for C2 Tunneling

Cybersecurity researchers have called attention to a cyber attack in which unknown threat actors deployed an open-source endpoint monitoring and digital forensic tool called Velociraptor, illustrating ongoing abuse of legitimate software for malicious purposes. "In this incident, the threat actor...

BIT-NODE-MIN-2023-30585

A vulnerability has been identified in the Node.js .msi version installation process, specifically affecting Windows users who install Node.js using the .msi installer. This vulnerability emerges during the repair operation, where the "msiexec.exe" process, running under the NT AUTHORITY\SYSTEM...

Unattended Installation of XenServer Tools

This article describes about the unattended installation of XenServer Tools using Microsoft’s Windows Installer program, msiexec. Background XenTools delivered with XenServer 6.1 version are able to make use of Microsoft’s Windows Installer program, msiexec. One of those is a way to install...

Thesycon Software Solutions TUSBAudio 安全漏洞

Thesycon Software Solutions TUSBAudio is a device driver from Thesycon Software Solutions. A security vulnerability exists in Thesycon Software Solutions TUSBAudio versions prior to 5.68.0. A local attacker can exploit this vulnerability to execute arbitrary code via msiexec.exe repair mode...

Microsoft Windows 10 (17763.379) - Install DLL Exploit

Exploit for windows platform in category local exploits edit: Figure out how this works for yourself. I can't be bothered. It's a really hard race, doubt anyone will be able to repro anyway. Could be used with malware, you could programmatically trigger the rollback. Maybe you can even pass the...

Update Rollup 7 for System Center 2012 Virtual Machine Manager SP1

Update Rollup 7 for System Center 2012 Virtual Machine Manager SP1 Introduction This article describes the issues that are fixed in Update Rollup 7 for Microsoft System Center 2012 Virtual Machine Manager Service Pack 1 SP1. Additionally, this article contains the installation instructions for...

SAFE'N'SEC SoftControl/SafenSoft SysWatch, SoftControl/SafenSoft TPSecure and SoftControl/SafenSoft Enterprise Suite Security Bypass Vulnerability

SAFE'N'SEC SoftControl/SafenSoft SysWatch, SoftControl/SafenSoft TPSecure, and SoftControl/SafenSoft Enterprise Suite are Russian SAFE'N'SEC's proactive defense-capable malware applications. A security vulnerability exists in SAFE'N'SEC SoftControl/SafenSoft SysWatch, SoftControl/SafenSoft...

MS Windows COM Structured Storage Local Exploit (MS05-012)

No description provided by source. // by Cesar Cerrudo - Argeniss - www.argeniss.com // MS05-012 - COM Structured Storage Vulnerability - CAN-2005-0047 Exploit // // More exploits at www.argeniss.com/products.html // // Works on Win2k sp4, WinXP sp2, Win2k3 sp0 // Close all runing programs to avo...