April 10, 2025, update for Office 2016 (KB5002623)

April 10, 2025, update for Office 2016 KB5002623 This article describes update 5002623 for Microsoft Office 2016 that was released on April 10, 2025.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't apply to...

CVE-2024-45335

Trend Micro Antivirus One, version 3.10.4 and below contains a vulnerability that could allow an attacker to use a specifically crafted virus to allow itself to bypass and evade a virus scan detection...

CVE-2024-45335

Trend Micro Antivirus One (v3.10.4 and earlier) is affected due to insufficient input validation that could allow a specially crafted virus to bypass or evade virus scanning detection. The issue could potentially be exploited by a remote attacker to defeat detection. Remediation: upgrade to a ver...

CVE-2024-45335

Trend Micro Antivirus One, version 3.10.4 and below contains a vulnerability that could allow an attacker to use a specifically crafted virus to allow itself to bypass and evade a virus scan detection...

Trend Micro Apex One Virus Scan Engine Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

Trend Micro Virus Scan API Denial of Service Vulnerability

Trend Micro Virus Scan is an application from the Chinese company Trend Micro Trend. It provides a virus scanning function. The Trend Micro Virus Scan API has a security vulnerability that can be exploited by attackers using specially crafted files that may result in a denial of service or system...

Trend Micro Virus Scan API 安全漏洞

Trend Micro Virus Scan is an application from the Chinese company Trend Micro Trend. It provides a virus scanning function. The Trend Micro Virus Scan API has a security vulnerability that can be exploited by attackers using specially crafted files that may result in a denial of service or system...

CVE-2016-8021

Improper verification of cryptographic signature vulnerability in Intel Security VirusScan Enterprise Linux VSEL 2.0.3 and earlier allows remote authenticated users to spoof update server and execute arbitrary code via a crafted input file...

McAfee Virus Scan Enterprise Password Hashes Dump

This module extracts the password hash from McAfee Virus Scan Enterprise VSE used to lock down the user interface. Hashcat supports cracking this type of hash using hash type sha1$salt.unicode$pass -m 140 and a hex salt --hex-salt of 01000f000d003300 unicode "\x01\x0f\x0d\x33". A dynamic format i...

Fully Undetectable Backdoor generator for Metasploit

Fully Undetectable Backdoor generator for Metasploit Security Labs Experts from Indian launch an automated Anti-Virus and Firewall Bypass Script. Its an Modified and Stable Version in order to work with Backtrack 5 distro. Below you can find the modified version and a simple presentation on how i...

CVE-2011-4707

Multiple cross-site scripting XSS vulnerabilities in the Virus Scan Interface in SAP Netweaver allow remote attackers to inject arbitrary web script or HTML via the 1 instname parameter to the VsiTestScan servlet and 2 name parameter to the VsiTestServlet servlet...

CVE-2011-4707

CVE-2011-4707 involves multiple cross-site scripting (XSS) vulnerabilities in the SAP NetWeaver Virus Scan Interface. The flaws allow remote attackers to inject arbitrary web script or HTML via the following parameters: (1) instname to VsiTestScan servlet and (2) name to VsiTestServlet servlet. A...

4) "S" stands for Safe(r)

Browsing a Web site for offers is one thing. Actually buying merchandise is another matter entirely. Online transactions should be carried out securely, using encryption to scramble the sensitive financial data you’re sending to the merchant’s Web site and that they’re sending to you. Before...

ZoneAlarm Internet Security Suite Buffer Overflow Vulnerability

The host has ZoneAlarm Internet Security Suite installed, which is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodzonealarmnetsecsuitebofvuln900126.nasl 5370 2017-02-20 15:24:26Z cfi $ Description: ZoneAlarm Internet Security Suite Buffer Overflow Vulnerability...

openSUSE 10 Security Update : clamav (clamav-2242)

The virus scan engine ClamAV was update to version 0.88.6. Following issues are fixed by this update : - freshclam: apply timeout patch from Everton da Silva Marques new options: ConnectTimeout and ReceiveTimeout - clamd: change stack size at the right place closes clamav bug103 -...

Trend Micro病毒扫描引擎TMComm本地权限提升漏洞

Trend Micro病毒扫描引擎为桌面、服务器和网关提供杀毒功能。 Trend Micro的病毒扫描引擎中所捆绑的TmComm.sys驱动没有对\.\TmComm DOS设备接口设置安全的权限，对Everyone给予了写权限。这允许本地登录的用户通过IOCTL访问仅应由特权用户才能访问的功能。 此外，这个DOS设备接口的IOCTL处理器没有验证对其传送的地址，允许在内核（RING 0）环境中覆盖任意内存或执行任意指令。 Trend Micro PC-cillin Internet Security 2007 Trend Micro Antivirus 2007 Trend Micro...

CVE-2005-3399

Multiple interpretation error in CAT-QuickHeal 8.0 allows remote attackers to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated as a safe type that could still be executed as a...

SUSE-SA:2005:038: clamav

The remote host is missing the patch for the advisory SUSE-SA:2005:038 clamav. This security update upgrades the Clamav virus scan engine to the version 0.68.1. Among other bugfixes and improvements, this update fixes a bug in the Quantum decompressor routines that can be used for a remote denial...

CVE-2002-1775

Affected product: Symantec Norton AntiVirus (NAV) 2002. Issue: remote attackers can bypass the initial virus scan by using a non-RFC compliant MIME header, causing NAV to prematurely stop scanning. Root cause/impact: bypass of initial scan with partial impact on security posture; AutoProtect feat...

CVE-2005-1711

Gibraltar Firewall 2.2 and earlier, when using the ClamAV update to 0.81 for Squid, uses a defunct ClamAV method to scan memory for viruses, which does not return an error code and prevents viruses from being detected...