7 matches found
CVE-2019-11448
An issue was discovered in Zoho ManageEngine Applications Manager 11.0 through 14.0. An unauthenticated user can gain the authority of SYSTEM on the server due to a PopupSLA.jsp sid SQL injection vulnerability. For example, the attacker can subsequently write arbitrary text to a .vbs file...
Iranian Threat Group Updates Tactics, Techniques and Procedures in Spear Phishing Campaign
Introduction From January 2018 to March 2018, through FireEye’s Dynamic Threat Intelligence, we observed attackers leveraging the latest code execution and persistence techniques to distribute malicious macro-based documents to individuals in Asia and the Middle East. We attribute this activity t...
Threat Outbreak Alert: Fake Sales Notification Email Messages on March 21, 2014
Medium Alert ID: 33467 First Published: 2014 March 24 13:26 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a sales notification for the recipient. The text in the email message attempts to convince the recipient to open...
Threat Outbreak Alert: Fake Payment Receipt Email Messages on March 1, 2014
Medium Alert ID: 33146 First Published: 2014 March 3 15:47 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a payment receipt for the recipient. The text in the email message attempts to convince the recipient to open the...
VbsEdit 4.7.2.0 - .vbs Buffer Overflow
VbsEdit 4.7.2.0 - .vbs Buffer Overflow Title: VbsEdit v 4.7.2.0.vbs Buffer Overflow Vulnerability Author : anT!-Tr0J4n Email : D3v-PoinTathotmaild0tcom & C1EHatHotmaild0tcom Greetz : Dev-PoinT.com ; GlaDiatOr,SILVER STAR , HoBeeZ, Coffin Of Evil special thanks : r0073r,Sid3^effects,L0rd...
Adersoft VbsEdit '.vbs' File Denial Of Service Vulnerability
VbsEdit is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
5 3 since the start of the way-vulnerability warning-the black bar safety net
Source: CoolDiyer's Blog Registry 1. HKEYLOCALMACHINE\Software\Microsoft\windows\Curr entVersion\Run\ All values in this key are executed. 2. HKEYLOCALMACHINE\Software\Microsoft\Windows\Curr entVersion\RunOnce\ All values in this key are executed, and then their autostart reference is deleted. 3...