EUVD-2002-2302

Malware in sbrugna...

June 10, 2025—KB5060842 (OS Build 26100.4349)

June 10, 2025—KB5060842 OS Build 26100.4349 For information about Windows update terminology, see types of Windows updates and the monthly quality update types. To find an overview, see the update history page for Windows 11, version 24H2. Follow @WindowsUpdate to find out when new content is...

June 10, 2025—Hotpatch KB5060841 (OS Build 26100.4270)

June 10, 2025—Hotpatch KB5060841 OS Build 26100.4270 Windows Server 2025 Datacenter & Standard machines connected to Azure Arc, now have the option to subscribe to hotpatch servicing. Hotpatch provides the ability to install OS security updates without restarting your machine. Improvements and...

CVE-2022-42078

Tenda AC1206 USAC1206V1.0RTLV15.03.06.23multiTD01 is vulnerable to Cross Site Request Forgery CSRF via function fromSysToolRestoreSet...

CVE-2002-2324

The "System Restore" directory and subdirectories, and possibly other subdirectories in the "System Volume Information" directory on Windows XP Professional, have insecure access control list ACL permissions, which allows local users to access restricted files and modify registry settings...

Windows Update Stack Elevation of Privilege Vulnerability

Summary Microsoft was notified that an elevation of privilege vulnerability exists in Windows Update, potentially enabling an attacker with basic user privileges to reintroduce previously mitigated vulnerabilities or circumvent some features of Virtualization Based Security VBS. However, an...

Syrian Hackers Distributing Stealthy C#-Based Silver RAT to Cybercriminals

Threat actors operating under the name Anonymous Arabic have released a remote access trojan RAT called Silver RAT that's equipped to bypass security software and stealthily launch hidden applications. "The developers operate on multiple hacker forums and social media platforms, showcasing an...

Microsoft Issues Windows 10 Workaround Fix for ‘SeriousSAM’ Bug

A privilege escalation bug, affecting versions of Windows 10, received a workaround fix by Microsoft Wednesday to prevent attackers from accessing data and creating new accounts on compromised systems. The bug, dubbed SeriousSAM, affects the Security Accounts Manager SAM database in all versions ...

Authentication flaw

Western Digital WD My Book Live 2.x and later and WD My Book Live Duo all versions have an administrator API that can perform a system factory restore without authentication, as exploited in the wild in June 2021, a different vulnerability than CVE-2018-18472...

KB4577586: Update for the removal of Adobe Flash Player: October 27, 2020

KB4577586: Update for the removal of Adobe Flash Player: October 27, 2020 Important notes Adobe Flash Player is out of support as of December 31, 2020. For more information, see Adobe Flash end of support on December 31, 2020. Applying this update will remove Adobe Flash Player from your Windows...

USN-4312-1: Timeshift vulnerability

Matthias Gerstner discovered that Timeshift did not securely create temporary files. An attacker could exploit a race condition in Timeshift and potentially execute arbitrary commands as root...

[SECURITY] Fedora 30 Update: timeshift-20.03-1.fc30

Timeshift for Linux is an application that provides functionality similar to the System Restore feature in Windows and the Time Machine tool in Mac OS. Timeshift protects your system by taking incremental snapshots of the file system at regular intervals. These snapshots can be restored at a late...

[SECURITY] Fedora 31 Update: timeshift-20.03-1.fc31

Timeshift for Linux is an application that provides functionality similar to the System Restore feature in Windows and the Time Machine tool in Mac OS. Timeshift protects your system by taking incremental snapshots of the file system at regular intervals. These snapshots can be restored at a late...

Fedora: Security Advisory for timeshift (FEDORA-2020-6b3ae09449)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora: Security Advisory for timeshift (FEDORA-2020-c18248f61a)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Windows 10 Update Bricks PCs, Microsoft Offers Workarounds

Microsoft has acknowledged that a Windows 10 bug is causing some users’ systems to freeze after using their System Restore feature. The issue arose after users complained that when they updated Windows 10 and attempted to restart their system, they were met with a “Stop error” that blocked them...

Digging Up the Past: Windows Registry Forensics Revisited

ARCHIVED STORY Digging Up the Past: Windows Registry Forensics Revisited By David Via · Jan 08, 2019 Introduction FireEye consultants frequently utilize Windows registry data when performing forensic analysis of computer networks as part of incident response and compromise assessment missions. Th...

CVE-2018-14988

The MXQ TV Box 4.4.2 Android device with a build fingerprint of MBX/m201N/m201N:4.4.2/KOT49H/20160106:user/test-keys contains the Android framework with a package name of android versionCode=19, versionName=4.4.2-20170213 that contains an exported broadcast receiver application component that, wh...

CVE-2018-11220

Bitmain Antminer D3, L3+, and S9 devices allow Remote Command Execution via the system restore function...

Command injection

Bitmain Antminer D3, L3+, and S9 devices allow Remote Command Execution via the system restore function...