18 matches found
CVE-2025-60349
An issue was discovered in Prevx v3.0.5.220 allowing attackers to cause a denial of service via sending IOCTL code 0x22E044 to the pxscan.sys driver. Any processes listed under registry key HKEYLOCALMACHINE\System\CurrentControlSet\Services\pxscan\Files will be terminated...
SAS CTF and the many ways to persist a kernel shellcode on Windows 7
On May 18, 2024, Kaspersky's Global Research & Analysis Team GReAT, with the help of its partners, held the qualifying stage of the SAS CTF, an international competition of cybersecurity experts held as part of the Security Analyst Summit conference. More than 800 teams from all over the world to...
CVE-2023-26237
An issue was discovered in WatchGuard EPDR 8.0.21.0002. It is possible to bypass the defensive capabilities by adding a registry key as SYSTEM...
CVE-2022-39060 ChangingTec MegaServiSignAdapter - Improper Input Validation
ChangingTech MegaServiSignAdapter component has a vulnerability of improper input validation. An unauthenticated remote attacker can exploit this vulnerability to access and modify HKEYCURRENTUSER subkey ex: AutoRUN in Registry where malicious scripts can be executed to take control of the system...
PT-2022-17070 · Printix · Printix Secure Cloud Print Management
Name of the Vulnerable Software and Affected Versions: Printix Secure Cloud Print Management versions 1.3.1106.0 and earlier Description: The issue concerns the incorrect use of Privileged APIs to modify values in HKEY LOCAL MACHINE via UITasks.PersistentRegistryData. This could potentially lead ...
NebulousAD - Automated Credential Auditing Tool
NebulousAD Automated Credential Auditing Tool. Installation Simply download the precompiled release requires no python interpreter, or build from source: Requires Python2.7 for now Run git clone [email protected]:NuID/nebulousAD.git Next, install with python setup.py install Then initialize...
Microsoft Guidance for Rogue System Register Read
Executive Summary On January 3, 2018, Microsoft released an advisory and security updates related to a newly discovered class of hardware vulnerabilities known as Spectre and Meltdown involving speculative execution side channels that affect AMD, ARM, and Intel CPUs to varying degrees. On May 21,...
KLA11030 Speculative Store Bypass and Rogue System Register Read vulnerabilities in Microsoft Surface Products
On January 3, 2018, Microsoft released advisories and security updates related to a recently discovered class of hardware vulnerabilities known as Spectre and Meltdown that affect AMD, ARM, and Intel CPUs. On May 21, 2018, Intel announced the Rogue System Registry Read vulnerability. Also a new...
MySQL AB ODBC Driver 3.51 Plain Text Password Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8245/info A vulnerability has been reported in the MySQL AB ODBC Open Data Base Connectivity driver implementation. The MySQL ODBC driver reportedly stores plain text credentials used to connect to the specified database ...
Microsoft Giving .NET Users The Option to Shed RC4
Microsoft didn’t beat around the bush when it warned customers to stay away from the deprecated RC4 algorithm last fall. Now it’s giving those who use its .NET software framework an option to disable the cipher in Transport Layer Security TLS as well. In a security advisory issued on its Security...
Multiple vulnerabilities in Samsung Kies
Advisory ID: HTB23099 Product: Samsung Kies Vendor: Samsung Electronics Vulnerable Versions: 2.3.2.1205420 and probably prior Tested Version: 2.3.2.1205420 Vendor Notification: June 25, 2012 Public Disclosure: October 15, 2012 Vulnerability Type: NULL Pointer Dereference CWE-476, Improper Access...
Spear Phishing Emails, Malware, Targeting BlackBerry Users
Blackberry owners are being targeted by a new type of malware that’s beginning to spread via spear phishing emails, according to security firm Websense. According to a post on the company’s blog, Security Labs, those users who are targeted receive an email with the subject line “Your BlackBerry I...
Multiple vulnerabilities in Samsung Kies
High-Tech Bridge Security Research Lab has discovered multiple vulnerabilities in Samsung Kies synchronization utility that allows remote attacker to compromise affected system, execute and modify arbitrary files, modify arbitrary directories and modify System Registry with privileges of the...
Windows Client/Server Run-time Subsystem Privilege Elevation Vulnerability (2620712)
This host is missing an important security update according to Microsoft Bulletin MS11-097. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Export the system registry catch-Hash-vulnerability warning-the black bar safety net
Author: TheLostMind See an article mentioned Export Registry forever CAIN to break the password, which for many grab the hash of the tool is to kill, but it won't dofree killof a large bovine, is a gospel, in fact, this long ago with the, seemingly, is foreign made, just not to attract attention...
SeaMonkey < 2.0.1 Multiple Vulnerabilities
The installed version of SeaMonkey is earlier than 2.0.1. Such versions are potentially affected by the following security issues : - Multiple crashes can result in arbitrary code execution. MFSA 2009-65 - Multiple vulnerabilities in 'liboggplay' can lead to arbitrary code execution. MFSA 2009-66...
GeckoActiveXObject exception messages can be used to enumerate installed COM objects — Mozilla
Security researcher Gregory Fleischer reported that the exception messages generated by Mozilla's GeckoActiveXObject differ based on whether or not the requested COM object's ProgID is present in the system registry. A malicious site could use this vulnerability to enumerate a list of COM objects...
msie.5.0.hta.txt
Date: Tue, 8 Jun 1999 08:41:54 -0400 From: "Noller, Jesse" To: [email protected] Subject: IE 5.0 and HTAs Security hole Good day: I recently set up an NT box, with just the basic setup, no other modifications, other than SP5, and an installation of Internet Explorer 5.0. I was...