36 matches found
EUVD-2017-6980
Malware in sbrugna...
EUVD-2018-10097
Malware in sbrugna...
EUVD-2018-10100
Malware in sbrugna...
Norton Security for Mac improperly processes ICMP packets
Overview Norton Security for Mac provided by NortonLifeLock Inc. is antivirus software. Norton Security for Mac improperly processes ICMP packets, which may result in OS to crash CWE-20. Yuki Meguro of Tohoku Information Systems Company, Incorporated reported this vulnerability to IPA. JPCERT/CC...
JVN#87683137: Norton Security for Mac improperly processes ICMP packets
Norton Security for Mac provided by NortonLifeLock Inc. is antivirus software. Norton Security for Mac improperly processes ICMP packets, which may result in OS to crash CWE-20. Impact An unprivileged user may cause a denial-of-service DoS condition on the OS. Solution Update the Software Update...
Social Media Hijacking Malware Spreading Through Gaming Apps on Microsoft Store
A new malware capable of controlling social media accounts is being distributed through Microsoft's official app store in the form of trojanized gaming apps, infecting more than 5,000 Windows machines in Sweden, Bulgaria, Russia, Bermuda, and Spain. Israeli cybersecurity company Check Point dubbe...
CVE-2018-18366
Symantec Norton Security prior to 22.16.3, SEP Windows client prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type ...
CVE-2018-18366
Symantec Norton Security prior to 22.16.3, SEP Windows client prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type ...
CVE-2018-18366
Symantec Endpoint Protection Small Business Edition ccSetx86.sys kernel driver (IOCTL 0x224844) has an information-disclosure vulnerability. A specially crafted IRP can cause the driver to return uninitialized kernel memory to a user-mode process, potentially leaking sensitive data. The issue is ...
CVE-2018-18366
Symantec Norton Security prior to 22.16.3, SEP Windows client prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type ...
Sql injection
Norton Security Windows client prior to 22.16.3 and SEP SBE Windows client prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 & SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution an...
CVE-2018-18369
Norton Security Windows client prior to 22.16.3 and SEP SBE Windows client prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 & SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution an...
CVE-2018-18369
Norton Security Windows client prior to 22.16.3 and SEP SBE Windows client prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 & SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution an...
CVE-2018-18369
Norton Security Windows client prior to 22.16.3 and SEP SBE Windows client prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 & SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution an...
CVE-2018-18369
The CVE-2018-18369 entry describes a DLL Preloading vulnerability affecting Windows clients: Norton Security prior to 22.16.3 and SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, and SEP-12.1.7484.7002. Root cause is a DLL loading order issue that can allow an attacker to substitute a m...
Spoofing
Prior to v 7.6, the Install Norton Security INS product can be susceptible to a certificate spoofing vulnerability, which is a type of attack whereby a maliciously procured certificate binds the public key of an attacker to the domain name of the target...
CVE-2017-15528
Prior to v 7.6, the Install Norton Security INS product can be susceptible to a certificate spoofing vulnerability, which is a type of attack whereby a maliciously procured certificate binds the public key of an attacker to the domain name of the target...
CVE-2017-15528
Prior to v 7.6, the Install Norton Security INS product can be susceptible to a certificate spoofing vulnerability, which is a type of attack whereby a maliciously procured certificate binds the public key of an attacker to the domain name of the target...
CVE-2017-15528
Prior to v 7.6, the Install Norton Security INS product can be susceptible to a certificate spoofing vulnerability, which is a type of attack whereby a maliciously procured certificate binds the public key of an attacker to the domain name of the target...
CVE-2017-15528
CVE-2017-15528 affects the Norton Security for Mac installer (pre-7.6). The vulnerability is a failure to properly validate SSL certificates during HTTPS connections, enabling a man‑in‑the‑middle where an attacker can spoof a valid server and modify or spoof content retrieved over HTTPS. The prac...