Search

Backdoor Routine This Backdoor executes the following commands from a remote malicious user: Performs various DDOS attacks It connects to the following URL(s) to send and receive commands from a remote

websites. It acts as a proxy server to allow remote malicious user to use the affected systems to hide their identities when performing malicious activities. Arrival Details This backdoor may be dropped by

CVE-2012-2523 This bulletin resolves a remote code execution vulnerability found in the scripting engines JScript and VBScript in Windows 64-bit systems. The vulnerability exists in the way the said

This malware may be hosted on a website and run when a user accesses the said website. It takes advantage of an unknown vulnerability in a certain software to allow a remote malicious user or malware

allow remote attackers to execute arbitrary code via ASN.1 BER encodings with (1) very large length fields that cause arbitrary heap data to be overwritten, or (2) modified bit strings. Microsoft Windows

Cross-Site Scripting Vulnerability (CVE-2022-4069) Web Client HTTPS 1011684* - GitLab Remote Code Execution Vulnerability (CVE-2022-2992) Web Server Common 1011690* - dotCMS Directory Traversal Vulnerability

versions of Internet Explorer. Some of the vulnerabilities, when exploited successfully, may allow remote code execution. The trigger to exploit these vulnerabilities is when a user, using a vulnerable

This Trojan takes advantage of a vulnerability in Java Runtime Environment (JRE) component to allow a remote user execute an arbitrary code, thus, compromising system's security. This Trojan arrives

PHP jui_filter_rule parsing library is prone to a remote code execution vulnerability. The vulnerability exists because of the provided PHP parsing library allows to specify a PHP function to convert

Adobe Flash Player Remote Code Execution Vulnerability (CVE-2015-3113) NOTES: Once a compromised website is visited, the user's browser with a vulnerable version of Adobe Flash loads a specially-crafted

Unrestricted File Upload Vulnerability (CVE-2023-5360) Web Application Tomcat 1011322* - Laravel Deserialization Remote Code Execution Vulnerability (CVE-2021-3129) Web Client Common 1011932 - Adobe Acrobat

Unrestricted File Upload Vulnerability (CVE-2023-5360) Web Application Tomcat 1011322* - Laravel Deserialization Remote Code Execution Vulnerability (CVE-2021-3129) Web Client Common 1011932 - Adobe Acrobat

Description Name: CVE-2019-6340 Drupal 8 RESTful Web Services Remote Code Execution - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for N/A.The host exhibiting this type of ...

Description Name: CVE-2016-6662 - MySQL Remote Code Execution Exploit . This is Trend Micro detection for MYSQL network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of...

Description Name: Possible WINBOX Remote Code Execution - TCP . This is Trend Micro detection for TCP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of network b...

Description Name: OGNL REMOTE CODE EXECUTION EXPLOIT - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of n...

Spammed messages that land users to websites hosting black hole exploit kits are spotted in the wild again. This phishing campaign purports to come from Citibank and makes use of a legitimate

\wausdis.exe = "%System%\wausdis.exe:*:Enabled:Windows Automatic Update Secure Download and Installation Service" Backdoor Routine This backdoor opens a random port to allow a remote user to connect to the

injected into processes running in memory. It opens a random port to allow a remote user to connect to the affected system. Once a successful connection is established, the remote user executes commands on

This is the Trend Micro detection for mobile vulnerabilities found in Android applications. Fatal bug happens when an app does not check the incoming illegal parameter or data thus causing the app to