29 matches found
EUVD-2008-5517
Malware in sbrugna...
EUVD-2006-5138
Malware in sbrugna...
EUVD-2006-3781
Malware in sbrugna...
EUVD-2007-0085
Malware in sbrugna...
sunbeltmidwest.com Cross Site Scripting vulnerability OBB-3841154
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
sunbelt-plb.com Cross Site Scripting vulnerability OBB-1239840
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
sunbeltrealty.co XSS vulnerability
Vulnerable URL: http://www.sunbeltrealty.co/listingresults.asp Details: Description| Value ---|--- Patched:| No Latest check for patch:| 31.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check sunbeltrealty.c...
Sunbelt Kerio Personal Firewall 4.3.426 CreateRemoteThread Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/18996/info Sunbelt Kerio Personal Firewall is prone to a denial-of-service vulnerability. This issue can occur when a program calls the 'CreateRemoteThread' Windows API call. Exploitation of this vulnerability could cause...
TDL4 Rootkit Bypasses Windows Code-Signing Protection
In recent versions of Windows, specifically Vista and Windows 7, Microsoft has introduced a number of new security features designed to prevent malicious code from running. But attackers are continually finding new ways around those protections, and the latest example is a rootkit that can bypass...
Injecting Fake Updates: Evilgrade
Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates. It comes with pre-made binaries agents, a working default configuration for fast pentests, and has it’s own WebServer and DNSServer modules. Easy to set up new...
CVE-2008-5542
Sunbelt VIPRE 3.1.1832.2 and possibly 3.1.1633.1, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header aka "EXE info" at the beginning, and modifying the filename to have 1 no extension, 2 a .txt extension, or 3 ...
Design/Logic Flaw
Sunbelt VIPRE 3.1.1832.2 and possibly 3.1.1633.1, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header aka "EXE info" at the beginning, and modifying the filename to have 1 no extension, 2 a .txt extension, or 3 ...
CVE-2008-5542
CVE-2008-5542 involves Sunbelt VIPRE 3.1.1832.2 (and possibly 3.1.1633.1) where, under Internet Explorer 6/7, an MZ header at document start and filename tricks (no extension, .txt, or .jpg) bypass malware-detection in HTML documents. This mirrors CVE-2006-5745 exploit behavior cited in the descr...
CVE-2008-5542
Sunbelt VIPRE 3.1.1832.2 and possibly 3.1.1633.1, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header aka "EXE info" at the beginning, and modifying the filename to have 1 no extension, 2 a .txt extension, or 3 ...
CVE-2007-0081
Sunbelt Kerio Personal Firewall SKPF 4.3.268 and 4.3.246, and possibly other versions allows local users to provide a Trojan horse iphlpapi.dll to SKPF by placing it in the installation directory...
CVE-2007-0081
Sunbelt Kerio Personal Firewall SKPF 4.3.268 and 4.3.246, and possibly other versions allows local users to provide a Trojan horse iphlpapi.dll to SKPF by placing it in the installation directory...
CVE-2007-0081
Sunbelt Kerio Personal Firewall (SKPF) 4.3.268 and 4.3.246 (and possibly other versions) is affected by CVE-2007-0081, where local users can place a Trojan horse iphlpapi.dll in the installation directory to compromise the product. The NVD CVSS2 base score is 6.8 (MEDIUM) with high impact on conf...
Sunbelt Kerio个人防火墙多个本地拒绝服务漏洞
Sunbelt Kerio个人防火墙是一个简单的基于规则设置的防火墙安全防护软件。 Sunbelt Kerio在处理挂接系统调用时存在漏洞,本地攻击者可能利用此漏洞导致系统崩溃。 Sunbelt Kerio个人防火墙hook了SSDT中的很多函数,其中至少有6种情况可能没有验证用户模式的参数。由于fwdrv.sys和khips.sys驱动中的错误,如果使用无效参数值调用了NtCreateFile、NtDeleteFile、NtLoadDriver、NtMapViewOfSection、NtOpenFile或NtSetInformationFile的话,就会导致系统崩溃。 Sunbelt...
CVE-2006-5153
The 1 fwdrv.sys and 2 khips.sys drivers in Sunbelt Kerio Personal Firewall 4.3.268 and earlier do not validate arguments passed through to SSDT functions, including NtCreateFile, NtDeleteFile, NtLoadDriver, NtMapViewOfSection, NtOpenFile, and NtSetInformationFile, which allows local users to caus...
CVE-2006-5153
The CVE concerns Sunbelt Kerio Personal Firewall 4.3.268 and earlier, where two drivers, fwdrv.sys and khips.sys, fail to validate arguments passed to SSDT functions (NtCreateFile, NtDeleteFile, NtLoadDriver, NtMapViewOfSection, NtOpenFile, NtSetInformationFile). This lack of validation allows lo...