Search

Microsoft addresses the following vulnerabilities in its July batch of patches: (MS12-043) Vulnerability in Microsoft XML Core Services Could Allow Remote Code Execution (2722479) Risk Rating: Cr...

 The Microsoft Office Web Components Spreadsheet ActiveX control (aka OWC10 or OWC11), as distributed in Office XP SP3 and Office 2003 SP3, Office XP Web Components SP3,...

* indicates a new version of an existing ruleDeep Packet Inspection Rules:SolarWinds Dameware Web Help Desk1012127* - SolarWinds Dameware Web Help Desk Deserialization Remote Code Execution Vulnerability (CVE-2024-28986)We...

This update resolves several vulnerabilities found in versions 6 to 11 of Internet Explorer. When an attacker successfully exploits these vulnerabilities, it may lead to any of the...

* indicates a new version of an existing ruleDeep Packet Inspection Rules:DCERPC Services1011037* - Identified Remote System Discovery Over SMB - 1 (ATT&CK T1018)Ivanti Avalanche Remote Control Server1011864 - Ivanti Avalanch...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

* indicates a new version of an existing ruleDeep Packet Inspection Rules:DCERPC Services - Client1011517 - Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability (DogWalk) Over SMB (CVE-2022-3...

There exists a vulnerability in Windows that could allow remote code execution if an attacker sent a malicious SMB response to a user's SMB request. The attacker would...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.

* indicates a new version of an existing ruleDeep Packet Inspection Rules:DCERPC Services - Client1004304* - Identified Suspicious Microsoft Windows Shortcut File Over Network Share (ATT&CK T1080)Trend Micro ServerProt...

Microsoft addresses the following vulnerabilities in its July batch of patches: (MS10-042) Vulnerability in Help and SupportCenter Could Allow Remote Code Execution (2229593) Risk Rating: Critic...

* indicates a new version of an existing ruleDeep Packet Inspection Rules:CyberArk Password Vault1009127* - CyberArk Password Vault Memory Disclosure Vulnerability (CVE-2018-9842)FTP Server WarFTPd1009229 - WarFTPd 'CWD/MKD' C...

This malware exploits the vulnerability in Microsoft XML Core Services, which prompted Microsoft to release a fix tool. To get a one-glance comprehensive view of the behavior of this Trojan, refer to the Threat Diagram shown below.This Trojan arrive...

 The Messenger Service for Windows NT through Server 2003 does not properly verify the length of the message, which allows remote attackers to execute arbitrary code via a buffer overflow attack. Mic...

UPATRE was first spotted in August 2013, after the fall of Blackhole Exploit Kit. Its variants usually arrive onto systems as malicious files attached to spammed messages, or as a link to a malicious website hosting the malware itself.UPATRE malware,...

Microsoft addresses the following vulnerabilities in its June batch of patches: (MS11-037) Vulnerability in MHTML Could Allow Information Disclosure (2544893) Risk Rating: Important This security...

This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It deletes itself after execution.

This update resolves a vulnerability that exists in version of Microsoft XML Core Services that could allow remote code execution when successfully ex...

This worm arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.It gathers target email addresses from the Windows Address Book (WAB). It takes advantage of software vulnera...

Microsoft addresses the following vulnerabilities in its August batch of patches: (MS14-043) Vulnerability in Windows Media Center Could Allow Remote Code Execution (2978742) Risk Rating: Criti...