Search
Keyword: microsoft security bulletin ms03-007
CVE-2009-1140,MS09-019 Microsoft Internet Explorer 5.01 SP4; 6 SP1; 6 and 7 for Windows XP SP2 and SP3; 6 and 7 for Server 2003 SP2; 7 for Vista Gold, SP1, and SP2; and 7 for Server 2008 SP2 does not
CVE-2011-3396 This security update resolves two privately reported vulnerabilities in Microsoft Office . The vulnerabilities could allow remote code execution if a user opens a specially crafted
Tracker 'verify.php' Remote Password Reset Vulnerability (CVE-2017-7615) Web Server HTTPS 1011673 - Cacti Command Injection Vulnerability (CVE-2022-46169) Web Server SharePoint 1011541* - Microsoft
* indicates a new version of an existing rule Deep Packet Inspection Rules: Trend Micro Mobile Security Server 1011957 - Trend Micro Mobile Security Server Cross-Site Scripting Vulnerability
"LocalSystem" HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\ddservice\Security Security = "{hex values}" HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\ddservice\Enum 0 = "Root\LEGACY_DDSERVICE
modifies the following registry entries: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Security Center AntiVirusDisableNotify = "1" HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Security Center UpdatesDisableNotify = "1
execution at every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows\CurrentVersion\Run Security Protection = "{malware path and filename}" Rogue:Win32/FakeRean (Microsoft); Mal/FakeAv-NU (Sophos)
execution at every system startup: HKEY_CURRENT_USER\Software\Microsoft\ Windows\CurrentVersion\Run Security Protection = "{Malware Path and File Name}"
CVE-2000-0122 Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI program. Microsoft FrontPage
CVE-2014-4074 This security update addresses a vulnerability found in Microsoft Windows, which could allow elevation of privilege once exploited successfully by attackers via a specially crafted
This security update addresses one vulnerability found in Microsoft Windows that could allow elevation of privilege if successfully exploited by remote attackers.� Windows Vista Service Pack
(MS13-057) Vulnerability in Windows Media Format Runtime Could Allow Remote Code Execution (2847883) 
CVE-2013-3127 This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow remote code execution if a user opens a specially crafted media
CVE-2012-0006 This security update resolves a privately reported vulnerability in Microsoft Windows . The vulnerability could allow denial of service if a remote unauthenticated attacker sends a
\SYSTEM\CurrentControlSet\ Services\Help Sesion\Security HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\ Services\Help Sesion\Enum It adds the following registry entries as part of its installation routine:
\Temp on Windows Vista and 7.) It adds the following registry keys: HKEY_CURRENT_USER\Software\Microsoft\ Windows\Windows Error Reporting HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ Services\syshost32
\Temp on Windows Vista and 7.) It adds the following registry keys: HKEY_CURRENT_USER\Software\Microsoft\ Windows\Windows Error Reporting HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\ Services\syshost32
* indicates a new version of an existing rule Deep Packet Inspection Rules: Directory Server LDAP 1008555 - Microsoft Windows Active Directory Denial Of Service Vulnerability (CVE-2008-1445)
executes them: %System%\{random file name}.exe - for OS versions Windows XP and lower %Application Data%\Security Data\{random file name}.exe - for OS versions Windows 7 and Vista (Note: %System% is the
executes them: %System%\{random file name}.exe - for OS versions Windows XP and lower %Application Data%\Security Data\{random file name}.exe - for OS versions Windows 7 and Vista (Note: %System% is the
\ Security Center\Svc FirewallDisableNotify = 00000001 HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\ Security Center\Svc AntiVirusDisableNotify = 00000001 Other Details This Trojan connects to the following possibly