7 matches found
EUVD-2007-1191
Malware in sbrugna...
CVE-2007-1194
Norman SandBox Analyzer does not use the proper range for Interrupt Descriptor Table IDT entries, which allows local users to determine that the local machine is an emulator, or a similar environment not based on a physical Intel processor, which allows attackers to produce malware that is more...
CVE-2007-1194
Norman SandBox Analyzer does not use the proper range for Interrupt Descriptor Table IDT entries, which allows local users to determine that the local machine is an emulator, or a similar environment not based on a physical Intel processor, which allows attackers to produce malware that is more...
CVE-2007-1194
CVE-2007-1194 concerns Norman SandBox Analyzer and its improper IDT entry range handling. The vulnerability allows local users to determine whether the local machine is running in an emulator or a non-physical Intel-based environment, enabling malware that is harder to analyze to tailor its behav...
CVE-2007-1194
Norman SandBox Analyzer does not use the proper range for Interrupt Descriptor Table IDT entries, which allows local users to determine that the local machine is an emulator, or a similar environment not based on a physical Intel processor, which allows attackers to produce malware that is more...
Evading the Norman SandBox Analyzer
Hi all, Summary: The Norman SandBox Analyzer http://sandbox.norman.no/live.html runs malicious code samples in an emulated environment while logging their actions. In practice it is more or less impossible to make an emulated environment perfectly similar to the real thing. It is therefore possib...
Norman SandBox Analyzer detection
Malware code can detect sandbox presence and change it's behaviour...