Search
Keyword: microsoft security bulletin ms03-007
CVE-2015-0085,CVE-2015-0086,CVE-2015-0097,CVE-2015-1633,CVE-2015-1636 This security update resolves several vulnerabilities in found in various Microsoft Office components. These vulnerabilities may
CVE-2005-4560 The Windows Graphical Device Interface library (GDI32.DLL) in Microsoft Windows allows remote attackers to execute arbitrary code via a Windows Metafile (WMF) format image with a
CVE-2012-0013 This security update resolves a privately reported vulnerability in Microsoft Windows . The vulnerability could allow remote code execution if a user opens a specially crafted Microsoft
following registry entries as part of its installation routine: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Security Center UACDisableNotify = "0" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Windows\CurrentVersion
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\IPRIP\Parameters HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\IPRIP\Security HKEY_USERS\.DEFAULT\Software\ Microsoft\Windows\CurrentVersion\ Internet
This malware has received attention from independent media sources and/or other security firms. This malware is a part of a package that generate BitCoins and performs DDOS attacks against targeted
DisplayName = "Windows Security Accounts Manager" HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\WinSamSs Description = "The startup of this service signals to other services that the Security Accounts
\Security Protection.lnk - shortcut link (Note: %Desktop% is the current user's desktop, which is usually C:\Documents and Settings\{User Name}\Desktop on Windows 2000, XP, and Server 2003, or C:\Users\{user
greater risk. It also has rootkit capabilities, which enables it to hide its processes and files from the user. It lowers the security setting of Internet Explorer. As of this writing, the said sites are
Settings\Application Data on Windows 2000, XP, and Server 2003.) It drops the following files: %System%\Documents and Settings\{computer name}\Desktop\Security Tool.lnk (Note: %System% is the Windows system
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\ApplicationAssociationToasts\MordernUI\{72EE8FAB-09B8-4768-A958-024CBD35BF21} Value: {default} Data: {file} -> checks existence of this file. Enumerates
{user name}\AppData\Roaming on Windows Vista and 7.) It drops the following non-malicious files: %User Profile%\Start Menu\Programs\Security Tool.lnk %User Profile%\Desktop\Security Tool.lnk (Note: %User
Security Library before 1.2.12; (5) IBM WebSphere Application Server Versions 6.0 through 6.0.2.33, 6.1 through 6.1.0.23, and 7.0 through 7.0.0.1; (6) Sun JDK and JRE Update 14 and earlier; (7) Microsoft
CVE-2014-0317 This security update resolves one privately reported vulnerability in Microsoft Windows. The vulnerability could allow security feature bypass if an attacker makes multiple attempts to
every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows\CurrentVersion\Run Internet Security = "%All Users Profile%\Application Data\bsprotection.exe" Other System Modifications This Trojan
adds the following registry entries: HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ Services\VbSecurity DisplayName = "Security" HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ Services\VbSecurity Type = "2
\Wilbert %User Profile%\Microsoft\CLR Security Config %User Profile%\CLR Security Config\v2.0.50727.42 (Note: %System Root% is the root folder, which is usually C:\. It is also where the operating system is
creates the following registry entries to enable automatic execution of dropped component at every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows\CurrentVersion\Run Intel Management Services
Windows Vista and 7.) Autostart Technique This backdoor adds the following registry entries to enable its automatic execution at every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows
FTP commands via a long ftp:// URI that leverages an existing session from the FTP client implementation in a web browser. proftpd_project proftpd 1.3.1 Trend Micro Deep Security shields networks