Explore >> Select a destination

You are here

 positive.security
Windows 10 RCE: The exploit is in the link | Positive Security
| | landave.io
F-Secure Anti-Virus: Remote Code Execution via Solid RAR Unpacking | landave's blog
12.0 parsecs away

Travel
| | Blog about anti-virus software vulnerabilities.
| | parsiya.net
Attack Surface Analysis - Part 2 - Custom Protocol Handlers
7.8 parsecs away

Travel
| |
| | www.dillonfrankesecurity.com
An Analysis of CVE-2023-36563, a WordPad Information Disclosure Vulnerability | Dillon Franke Security
15.3 parsecs away

Travel
| | In this blog post, I'll discuss my analysis of CVE-2023-36563, a Microsoft WordPad Information Disclosure Vulnerability, from initial patch diff to working exploit. Then, I'll discuss detection and mitigation strategies for preventing exploitation of this vulnerability. CVE-2023-36563 Overview Summary CVE-2023-36563's flaw lies within legacy functionality to convert an OLE 1 storage object (OLESTREAM) to the new IStorage format. By crafting a file with a malicious OLE 1 LinkedObject, an attacker could coerce authentication to an untrusted server to steal NTLM hashes.
| | www.seqrite.com
Unveiling Silent Lynx APT: Targeting Central Asian Entities with Malicious Campaigns
54.2 parsecs away

Travel
| Seqrite Labs uncovers Silent Lynx, a new APT group targeting government entities in Kyrgyzstan and neighboring nations. This in-depth analysis explores their campaigns, including malicious ISO files, C++ loaders, PowerShell scripts, and Golang implants, leveraging Telegram for command and control.