Search

following registry entries to enable its automatic execution at every system startup: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion\Run Windows System Monitor = "%Windows%\system\winrsc.exe

CVE-2010-1850 Buffer overflow in MySQL 5.0 through 5.0.91 and 5.1 before 5.1.47 allows remote authenticated users to execute arbitrary code via a COM_FIELD_LIST command with a long table name. MYSQL

remote attackers to execute arbitrary code via a large text value for a node. Mozilla Firefox 3.5,Mozilla Firefox 3.5.1,Mozilla Firefox 3.5.2,Mozilla Firefox 3.5.3,Mozilla Firefox 3.5.4,Mozilla Firefox

This Trojan may be downloaded by other malware/grayware from remote sites. It takes advantage of an unknown vulnerability in a certain software to allow a remote malicious user or malware to download

the following vulnerabilities: Linksys E-series - Remote Code Execution ELF/Mirai.IA!tr (FORTINET), HEUR:Backdoor.Linux.Mirai.b (KASPERSKY) Dropped by other malware, Downloaded from the Internet

arrives via the following means: Microsoft Windows SMB Server (MS17-010) Vulnerability Autostart Technique This Worm registers itself as a system service to ensure its automatic execution at every system

malicious user: Send and receive other files. Modify registries. Execute other files. Remote execution of arbitrary code received from the server. It connects to the following URL(s) to send and receive

privilege if an attacker logs on to a system and runs a specially crafted application. An attacker who successfully exploited this vulnerability could run arbitrary code in the context of another process. If

Apache Tomcat can be forced to reveal a complete directory listing for any directory by requesting a mapped file extension prepended with a semicolon, a reserved character. The file does not need to

This malware is the payload of the exploit related to Sandworm zero-day vulnerability. The said vulnerability has been covered in MS14-060 and believed to be used in cyber attacks against European

Description Name: CVE-2018-8476 Windows Deployment Services Remote Code Execution Exploit - TFTP (Request) . This is Trend Micro detection for TFTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movem...

Description Name: CVE-2018-8653 MSIE Remote Code Execution - HTTP (Response) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this t...

Description Name: CVE-2018-7602 - Remote Code Execution - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type ...

Description Name: CVE-2017-8543 - Remote Code Execution - SMB (Request) . This is Trend Micro detection for SMB network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of...

Description Name: CVE-2017-8620 - Remote Code Execution - SMB (Request) . This is Trend Micro detection for SMB network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type of...

Description Name: CVE-2017-7494 - Remote Code Execution - SMB (Request) - Variant 2 . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting...

Description Name: CVE-2013-4810 JBoss AS Marshalled Object Remote Code Execution Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Moveme...

Description Name: CVE-2018-9866 SonicWall XML RPC Remote Code Execution Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The ...

Description Name: LINKSYS Unauthenticated Remote Code Execution Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhib...

Description Name: CVE-2017-8620 - Remote Code Execution - SMB2 (Request) . This is Trend Micro detection for SMB2 network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type ...