352 matches found
Suspicious Metadata Mail Phishing Containing Attachment
Mail attachment containing a malicious downloader was observed as part of ransomware campaigns. A remote attacker could send spam e-mails including those downloaders and convince users to manually enable them. This would allow the malicious code to run and infect the target system...
Suspicious Microsoft Publisher Mail Attachment
Microsoft Office Publisher files might contain a malicious downloader. A remote attacker could send spam e-mails including those downloaders, and use social engineering in order to convince users to manually enable them. This would allow the malicious code to run and infect the target system...
Microsoft Internet Explorer Memory Corruption (MS16-104: CVE-2016-3375; CVE-2017-11913)
A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling scripts. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory corruption in a way th...
Microsoft Word Document Malicious Known Downloaders
Microsoft Office files might contain malicious downloaders. A remote attacker could send spam e-mails including such downloaders, and use social engineering in order to convince users to manually enable them. This would allow the malicious code to run and infect the target system...
Microsoft Internet Explorer Memory Corruption (MS16-084 : CVE-2016-3243)
A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory...
Microsoft Edge Memory Corruption (MS16-085: CVE-2016-3246)
A remote code execution vulnerability exists in Microsoft Edge. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory corruption in...
Microsoft Office Files Containing Malicious VBScript Downloader
Microsoft Office files might contain a malicious downloader. A remote attacker could send spam e-mails including those downloaders, and use social engineering in order to convince users to manually enable them. This would allow the malicious code to run and infect the target system...
Microsoft Edge Memory Corruption (MS16-068: CVE-2016-3199)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...
Microsoft Internet Explorer Memory Corruption (MS16-063: CVE-2016-3210)
A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory...
Microsoft Internet Explorer Memory Corruption (MS16-063: CVE-2016-3207)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...
Microsoft Internet Explorer Memory Corruption (MS16-063: CVE-2016-3205)
A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to an out-of-bound write access. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory corruption in a way that would...
Regsvr32.exe (.sct) Command Delivery Server
This module uses the Regsvr32.exe Application Whitelisting Bypass technique as a way to run a command on a target system. The major advantage of this technique is that you can execute a static command on the target system and dynamically and remotely change the command that will actually run by...
Microsoft Windows Media Center Remote Code Execution (MS16-059: CVE-2016-0185)
A flaw exists in Windows Media Center when parsing MCL files. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted Media Center file. Successful exploitation could allow attackers to execute code on the target system...
Microsoft Edge Memory Corruption (MS16-052: CVE-2016-0191)
A remote code execution vulnerability has been reported in Microsoft Edge. The vulnerability is due to a use of uninitialized pointer. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could cause memory corruption in a way that would...
Microsoft Internet Explorer Memory Corruption (MS16-037: CVE-2016-0154)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...
Microsoft Edge Memory Corruption (MS16-038: CVE-2016-0156)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...
Microsoft Edge Memory Corruption (MS16-024: CVE-2016-0124)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...
Microsoft Internet Explorer Memory Corruption (MS16-023: CVE-2016-0109)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to an error in the way Internet Explorer accesses an object in memory that has been deleted. A remote attacker can exploit this issue by enticing a target victim to open a specially...
Microsoft Internet Explorer Memory Corruption (MS16-023: CVE-2016-0105)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to a type confusion when handling certain objects in JavaScript. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page that could...
Microsoft Internet Explorer Memory Corruption (MS16-023: CVE-2016-0107)
A remote code execution vulnerability has been reported in Microsoft Internet Explorer. The vulnerability is due to out-of-bound write access. A remote attacker can exploit this issue by enticing a target victim to open a specially crafted web page. Successful exploitation could cause memory...