[FD] Backdoor.Win32.Phase.11 / Unauthenticated Remote Command Execution

2021-12-13 Thread malvuln
Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/fb4fb710f031304d788d9cd1c4201552.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.Phase.11 Vulnerability: Unauthenticated Remote Command Execution Description: The ph

[FD] Backdoor.Win32.Ramus / Unauthenticated Remote Code Execution

2021-12-13 Thread malvuln
Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/20cfe4912b280ad141d51f1f7370bfa5.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.Ramus Vulnerability: Unauthenticated Remote Code Execution Description: The malware

[FD] Backdoor.Win32.Jokerdoor / Remote Stack Buffer Overflow

2021-12-13 Thread malvuln
Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/8f18703c433b5703a7131c1afeacfd74.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.Jokerdoor Vulnerability: Remote Stack Buffer Overflow Description: The malware liste

[FD] Backdoor.Win32.FTP.Matiteman / Weak Hardcoded Password

2021-12-13 Thread malvuln
Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/fc8eaa2a5752b509dbd02989d8d9f2e2.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.FTP.Matiteman Vulnerability: Weak Hardcoded Password Description: The malware listen

[FD] Backdoor.Win32.BackAttack.20 / Authentication Bypass RCE

2021-12-13 Thread malvuln
Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/8b484576f928c256277016104cc364c2_B.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.BackAttack.20 Vulnerability: Authentication Bypass RCE Description: BackAtTack 2.0

[FD] Backdoor.Win32.BackAttack.20 / Unauthenticated Remote Command Execution

2021-12-13 Thread malvuln
Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/8b484576f928c256277016104cc364c2.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.BackAttack.20 Vulnerability: Unauthenticated Remote Command Execution Description: B

[FD] Backdoor.Win32.Ncx.b / Remote Stack Buffer Overflow

2021-12-13 Thread malvuln
Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/991c1f02c809cee860cb712896a45338_B.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.Ncx.b Vulnerability: Remote Stack Buffer Overflow Description: The malware listens

[FD] Backdoor.Win32.Ncx.b / Unauthenticated Remote Command Execution

2021-12-13 Thread malvuln
Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/991c1f02c809cee860cb712896a45338.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.Ncx.b Vulnerability: Unauthenticated Remote Command Execution Description: The malwa

[FD] Backdoor.Win32.Nucleroot.mf / Stack Buffer Overflow

2021-12-13 Thread malvuln
Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/8de56eef118187a89eeab972288ce94d.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.Nucleroot.mf Vulnerability: Stack Buffer Overflow Description: Description: MaskPE b

[FD] Backdoor.Win32.Asylum.014 / Cleartext Password Storage

2021-12-13 Thread malvuln
Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/a83989d36f3b443a757eef1c99f1a373.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.Asylum.014 Vulnerability: Cleartext Password Storage Description: Asylum v0.1.4 (Fea

[FD] Backdoor.IRC.Subhuman / Unauthenticated Open Proxy

2021-12-13 Thread malvuln
Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/f93e64ac9c3383d0df23662a78a76c07.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.IRC.Subhuman Vulnerability: Unauthenticated Open Proxy Description: The malware listens on

[FD] Backdoor.Win32.Mechbot.a / Insecure Permissions

2021-12-13 Thread malvuln
Discovery / credits: Malvuln - malvuln.com (c) 2021 Original source: https://malvuln.com/advisory/8c9e7906d0ad5d0f2267be0057f2a8e3.txt Contact: malvul...@gmail.com Media: twitter.com/malvuln Threat: Backdoor.Win32.Mechbot.a Vulnerability: Insecure Permissions Description: The malware creates a dir

[FD] SEC Consult SA-20211213-1 :: Stored Cross Site Scripting in Sofico Miles RIA

2021-12-13 Thread ., SEC Consult Vulnerability Lab
SEC Consult Vulnerability Lab Security Advisory < 20211213-1 > === title: Stored Cross Site Scripting product: Sofico Miles RIA vulnerable version: 2020.2 build 127964T fixed version:

[FD] SEC Consult SA-20211213-0 :: Multiple vulnerabilities in AbanteCart e-commerce platform

2021-12-13 Thread ., SEC Consult Vulnerability Lab
SEC Consult Vulnerability Lab Security Advisory < 20211213-0 > === title: Multiple vulnerabilities product: AbanteCart e-commerce platform vulnerable version: <1.3.2 fixed versi