14 matches found
Exploit for Use After Free in Microsoft
CVE-2019-0708 CVE-2019-0708 using Metasploit-Framework...
Threat Outbreak Alert: Fake Product Purchase Order Email Messages on June 19, 2013
Medium Alert ID: 29735 First Published: 2013 June 20 18:56 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product order notification for the recipient. The text in the email message attempts to convince the recipient ...
Some Signs Point to Shamoon as Malware in Aramco Attack
While researchers continue to dig into the Shamoon malware, looking for its origins and a complete understanding of its capabilities, a group calling itself the Cutting Sword of Justice is claiming responsibility for an attack on the massive Saudi oil company Aramco, which some experts believe...
Car Maker Nissan Admits To Virus Infection, Loss of Employee Accounts
Car maker Nissan became the latest high profile firm to acknowledge being hacked. The company issued a statement last week saying that it detected a virus infection on its network that resulted int he theft of employee login credentials from a company data store. The intrusion was detected on Apr...
Step 1: Understand The Problem
The first step in dealing with a scareware is to understand what has just happened to your computer. Victims often ignore or miss the signs of a rogue AV infection, says Nicolas Brulez, a senior malware researcher at Kaspersky Lab. This is especially true with scareware, which tries to fool you...
Google's New Priority Inbox Hits a Snag
The buzz this morning isn’t Google’s Buzz, but its new Priority Inbox feature for the company’s Web based Gmail messaging service. The new feature allows heavy e-mail users to filter out and prioritize important messages. But the search giant has already hit a snag in releasing it to the public...
Thumb Drive Attack in 2008 Compromised Classified U.S. Networks
A senior official at the Department of Defense is talking publicly about a 2008 security breach that he claims compromised classified intelligence networks used by the U.S. military. Classified networks used by the U.S. military were the target of a successful attack by a foreign nation in 2008,...
Counterpoint: Market share not the only obstacle for mobile viruses
The looming mobile malware threat of the past decade has yet to materialize. The reason for its lack of fruition, according to scientists, is due to geography and the lack of a dominant market shareholder. However well done the math, the scientific study is flawed nonetheless. “Understanding the...
迅雷5 pplayer.dll 组件漏洞
出现严重0-Day漏洞,病毒作者可利用该漏洞编写恶意网页,当用于浏览这些网页的时候,就会感染病毒,进而该病毒可以盗窃用户的帐号和密码,从而使用户遭受到损失。 与上次的不同,这次有漏洞的程序出现在迅雷看看(Thunder KanKan)上,pplayer.dll 组件版本号:1.2.3.49,CLSID:F3E70CEA-956E-49CC-B444-73AFE593AD7F. 该组件内的一个函数FlvPlayerUrl上,存在边界检查不严格的问题,当向其传递过长参数时,会导致程序溢出。病毒作者可以利用这个缺陷,精心编写Shellcode,溢出,然后可以下载任意恶意病毒文件。 迅雷5...
The use of manual detection of the password, 9 0-invasion 5 website-vulnerability warning-the black bar safety net
The use of manual detection of the password, 9 0-invasion 5 website In order to further improve our panel of the electronic design, the other night in the SCM experiments smothering overtime, has been debugging into the wee hours of the three roll call minutes before they succeed... Happy ...^^...
[FTP Voyager] File List Buffer Overflow Vulnerability
----------------------------------------------------------------------- SUMMARY : FTP Voyager File List Buffer Overflow Vulnerability PRODUCT : FTP Voyager VERSIONS : 9.1.0.3 10.0.0.0 VENDOR : Rhino Software http://www.rhinosoft.com/ SEVERITY : Critical. Code Execution. DISCOVERED BY : nesumin...
[SPSadvisory#46]Apple QuickTime Player "Content-Type" Buffer Overflow
SPS Advisory 46 Apple QuickTime Player "Content-Type" Buffer Overflow UNYUN [email protected] Shadow Penguin Security http://www.shadowpenguin.org ---------------------------------------------------------------------- Date =================== Feb. 9, 2002 Vulnerable ===================...
[SPSadvisory#39]Adobe Acrobat Series PDF File Buffer Overflow
SPS Advisory 39 Adobe Acrobat Series PDF File Buffer Overflow UNYUN [email protected] Shadow Penguin Security http://shadowpenguin.backsection.net ------------------------------------------------------------- Date July 26, 2000 vulnerable Acrobat Reader 3.0J for Windows95/98/NT/2000...
ie5.file.txt
Microsoft Internet Explorer 4/5 overflows when the handling of "file://" specification. This overflow occurs when we are logging on to the Microsft Network, this overflow can be verified if the long name is specfied to the "file://". For example, file://test/AAAAAAAAAAAA.... long 'A' This is most...