ID SECURITYVULNS:VULN:6582
Type securityvulns
Reporter BUGTRAQ
Modified 2006-09-06T00:00:00
Description
Privilege escalation with chatter attack.
{"id": "SECURITYVULNS:VULN:6582", "bulletinFamily": "software", "title": "Avira AntiVir antivirus privilege escalation", "description": "Privilege escalation with chatter attack.", "published": "2006-09-06T00:00:00", "modified": "2006-09-06T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:6582", "reporter": "BUGTRAQ", "references": ["https://vulners.com/securityvulns/securityvulns:doc:14156"], "cvelist": [], "type": "securityvulns", "lastseen": "2018-08-31T11:09:21", "edition": 1, "viewCount": 1, "enchantments": {"score": {"value": 4.3, "vector": "NONE", "modified": "2018-08-31T11:09:21", "rev": 2}, "dependencies": {"references": [{"type": "mskb", "idList": ["KB2600640", "KB977074"]}, {"type": "centos", "idList": ["CESA-2020:1011"]}, {"type": "threatpost", "idList": ["THREATPOST:2FC50917F19F5A13F14EBE274E190CD9", "THREATPOST:F3563336B135A1D7C1251AE54FDC6286"]}, {"type": "oraclelinux", "idList": ["ELSA-2020-1011"]}, {"type": "nessus", "idList": ["EULEROS_SA-2020-1318.NASL", "EULEROS_SA-2020-1314.NASL", "DEBIAN_DLA-2164.NASL", "FREEBSD_PKG_40194E1C6D8911EA808280EE73419AF3.NASL", "REDHAT-RHSA-2020-1011.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310892164", "OPENVAS:1361412562311220201318", "OPENVAS:1361412562311220201314"]}, {"type": "debian", "idList": ["DEBIAN:DLA-2164-1:52F3C"]}, {"type": "redhat", "idList": ["RHSA-2020:1011"]}, {"type": "zdt", "idList": ["1337DAY-ID-34168", "1337DAY-ID-34156"]}, {"type": "carbonblack", "idList": ["CARBONBLACK:0C01AD7DF1850D0059FF0CAF629FC366"]}, {"type": "wpvulndb", "idList": ["WPVDB-ID:10149"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:14156"]}], "modified": "2018-08-31T11:09:21", "rev": 2}, "vulnersScore": 4.3}, "affectedSoftware": [{"name": "AntiVir PersonalEdition Classic", "operator": "eq", "version": "6.35"}]}
{"rst": [{"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **http://59[.]96.37.17:39830/mozi.m** in [RST Threat Feed](https://rstcloud.net/profeed) with score **15**.\n First seen: 2021-01-06T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **malware**.\nIOC could be a **False Positive** (Resource unavailable).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2021-01-06T00:00:00", "id": "RST:0AF6E26F-6582-37B2-8118-F6E82F51A40C", "href": "", "published": "2021-01-18T00:00:00", "title": "RST Threat feed. IOC: http://59.96.37.17:39830/mozi.m", "type": "rst", "cvss": {}}, {"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **http://112[.]236.208.47:44892/mozi.a** in [RST Threat Feed](https://rstcloud.net/profeed) with score **55**.\n First seen: 2021-01-05T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **malware**.\nIt was found that the IOC is used by: **mozi**.\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2021-01-05T00:00:00", "id": "RST:8DE7D53B-6582-340B-8EEE-CBA8878FE66C", "href": "", "published": "2021-01-18T00:00:00", "title": "RST Threat feed. IOC: http://112.236.208.47:44892/mozi.a", "type": "rst", "cvss": {}}, {"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **onlinepcdoc[.]com** in [RST Threat Feed](https://rstcloud.net/profeed) with score **24**.\n First seen: 2020-12-22T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **generic**.\nDomain has DNS A records: 74[.]220.199.9,162.159.24.49,162.159.25.241\nWhois:\n Created: 2009-04-02 10:57:47, \n Registrar: FastDomain Inc, \n Registrant: unknown.\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-22T00:00:00", "id": "RST:6442A458-6582-357B-A50F-39CD861463C9", "href": "", "published": "2021-01-18T00:00:00", "title": "RST Threat feed. IOC: onlinepcdoc.com", "type": "rst", "cvss": {}}, {"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **atendimentoaocliente[.]cu.ma** in [RST Threat Feed](https://rstcloud.net/profeed) with score **24**.\n First seen: 2020-12-22T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **generic**.\nDomain has DNS A records: 192[.]187.120.244,66.45.229.178,66.45.229.179,206.72.206.125,206.72.206.126\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-22T00:00:00", "id": "RST:36A3B24D-6582-3FEF-AAB4-05D1E6C467CC", "href": "", "published": "2021-01-18T00:00:00", "title": "RST Threat feed. IOC: atendimentoaocliente.cu.ma", "type": "rst", "cvss": {}}, {"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **natruslslimdsksstvv[.]us** in [RST Threat Feed](https://rstcloud.net/profeed) with score **15**.\n First seen: 2020-10-30T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **spam**.\nDomain has DNS A records: 104[.]24.117.13,104.24.116.13,172.67.220.174\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-10-30T00:00:00", "id": "RST:1E86A3AE-6582-3E06-8E58-3B09D15815BB", "href": "", "published": "2021-01-18T00:00:00", "title": "RST Threat feed. IOC: natruslslimdsksstvv.us", "type": "rst", "cvss": {}}, {"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **192[.]241.192.103** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **10**.\n First seen: 2020-12-20T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **generic**.\nASN 14061: (First IP 192.241.128.0, Last IP 192.241.255.255).\nASN Name \"DIGITALOCEANASN\" and Organisation \"DigitalOcean LLC\".\nThis IP is a part of \"**digitalocean**\" address pools.\nASN hosts 3198609 domains.\nGEO IP information: City \"San Francisco\", Country \"United States\".\nIOC could be a **False Positive** (Cloud provider IP).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-20T00:00:00", "id": "RST:644394B7-6582-3849-BCD2-554E5A0916DC", "href": "", "published": "2021-01-18T00:00:00", "title": "RST Threat feed. IOC: 192.241.192.103", "type": "rst", "cvss": {}}, {"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **bt2792[.]space** in [RST Threat Feed](https://rstcloud.net/profeed) with score **24**.\n First seen: 2020-12-22T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **generic**.\nDomain has DNS A records: 192[.]5.5.241,128.8.10.90,192.228.79.201,192.112.36.4\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-22T00:00:00", "id": "RST:2D668E44-6582-3097-8424-2D9BA3B90321", "href": "", "published": "2021-01-18T00:00:00", "title": "RST Threat feed. IOC: bt2792.space", "type": "rst", "cvss": {}}, {"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **203[.]76.115.246** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **2**.\n First seen: 2020-02-05T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **generic**.\nASN 23688: (First IP 203.76.108.0, Last IP 203.76.115.255).\nASN Name \"LINK3TECHASBDAP\" and Organisation \"Link3 Technologies Ltd\".\nASN hosts 253 domains.\nGEO IP information: City \"Dhaka\", Country \"Bangladesh\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-02-05T00:00:00", "id": "RST:1E98F3F0-6582-3B42-95E0-6B1BD248C707", "href": "", "published": "2021-01-18T00:00:00", "title": "RST Threat feed. IOC: 203.76.115.246", "type": "rst", "cvss": {}}, {"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **pc-scan-6582[.]win** in [RST Threat Feed](https://rstcloud.net/profeed) with score **10**.\n First seen: 2020-12-22T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **generic**.\nIOC could be a **False Positive** (Domain not resolved. Whois records not found).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-22T00:00:00", "id": "RST:5AECF75F-1993-3F46-A3FF-7E22B1BDB2B0", "href": "", "published": "2021-01-18T00:00:00", "title": "RST Threat feed. IOC: pc-scan-6582.win", "type": "rst", "cvss": {}}, {"lastseen": "2021-01-17T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **65[.]183.76.89** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **22**.\n First seen: 2020-12-22T03:00:00, Last seen: 2021-01-17T03:00:00.\n IOC tags: **generic**.\nASN 6582: (First IP 65.183.64.0, Last IP 65.183.79.255).\nASN Name \"FRII\" and Organisation \"Front Range Internet Inc\".\nASN hosts 1565 domains.\nGEO IP information: City \"Fort Collins\", Country \"United States\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-22T00:00:00", "id": "RST:829F177F-9F62-3E48-B185-1FD0C260F2B2", "href": "", "published": "2021-01-18T00:00:00", "title": "RST Threat feed. IOC: 65.183.76.89", "type": "rst", "cvss": {}}]}
