Search

Adobe Flash Player allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bo...

Adobe Flash Player allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bo...

Adobe Flash Player allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bo...

* indicates a new version of an existing rule Deep Packet Inspection Rules: HP Intelligent Management Center Dbman 1004677* - HP 3COM/H3C Intelligent Management Center dbman sprintf Remote Code Execution Vulnerability 1008...

This backdoor may be downloaded by other malware/grayware from remote sites. It executes commands from a remote malicious user, effectively compromising the affected system. It connects to a website to send and receive information. It also has rootk...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Asterisk Manager Interface (AMI) HTTP 1009148* - Asterisk HTTP Server Denial Of Service Vulnerability (CVE-2018-7287) Directory Server LDAP 1010895 - ...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Advanced Message Queuing Protocol (AMQP) 1009126 - Pivotal Spring AMQP Remote Code Execution Vulnerability (CVE-2017-8045) Directory Server LDAP 100855...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services - Client 1012075* - Microsoft Windows MSHTML Platform Remote Code Execution Vulnerability Over SMB (CVE-2024-38112) Ivanti Avalanche 10...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Mail Server Common 1000880* - Detected Format String Vulnerability In SMTP Mail Server Miscellaneous 1000090* - Detected Format String Vulnerability I...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1007596* - Identified Possible Ransomware File Extension Rename Activity Over Network Share DNS Client 1007425 - ISC BIND OpenPGP Ke...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DHCP Client 1009116 - DHCP Client Script Code Execution Vulnerability (CVE-2018-1111) - 1 DHCP Client - Incoming 1009114 - DHCP Client Script Code Execu...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1010532 - Identified Remote Operating System Discovery Over SMB Via Nmap Scripting Engine Directory Server LDAP 1010895* - OpenLDAP Slapd...

Adobe Flash Player allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bo...

Adobe Flash Player allow remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bo...

* indicates a new version of an existing rule Deep Packet Inspection Rules: SSH Client 1008580 - OpenSSH Forward Option Handler Buffer Overflow Vulnerability (CVE-2016-0778) Web Application Common 1005402* - Identified Sus...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DNS Client 1010744 - DNS Request To Ngrok Domain Detected 1010740 - DNSmasq DNSSEC Heap Based Buffer Overflow Vulnerability (CVE-2020-25681) DNS Ser...

* indicates a new version of an existing rule Deep Packet Inspection Rules: CentOS Web Panel 1012095 - CentOS Web Panel Arbitrary File Write Vulnerability (CVE-2021-45466) 1012071 - CentOS Web Panel File Inclusion Vulnerabili...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1011105* - Identified File Deletion From SMB Share (ATT&CK T1070.004) DNS Server 1011102* - PowerDNS Authoritative Server Denial of...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DNS Client 1010744* - DNS Request To Ngrok Domain Detected Directory Server LDAP 1010820 - OpenLDAP Slapd SASL Proxy Authorization Denial Of Service Vu...

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It executes commands from a remote malicious user, effectively compromising the affected system.