We recently received an email which contained a malicious Word macro. Usually, the only thing that changes between malicious Office macros is the obfuscation that is used; e.g. changing variable names and splitting text strings. This [...]
An Avast Sandbox escape, CVE-2016-4025, is possible due to a design flaw in the Avast DeepScreen feature. It is likely that this flaw will remain in supported Avast products for some time. […]
All Panda Security 2016 home user products for Windows are vulnerable to privilege escalation, CVE-2015-7378, which allows a local attacker to execute code as SYSTEM from any account (guest included), thus completely compromising [...]
Panda Endpoint Administration Agent allows a local attacker to elevate his privileges from any account type and execute code as SYSTEM, thus completely compromising the affected host, as described in CVE-2016-3943. […]
Several SafeNet Authentication Service Agents could allow a local attacker to obtain privilege escalation due to weak ACLs assigned to subdirectories and executable modules of those products. A user with low privileges could [...]
CVE-2015-8620 We discovered this vulnerability in the Avast Virtualization driver (aswSnx.sys) that handles some of the ‘Sandbox’ and ‘DeepScreen’ functionality of all the Avast Windows products. We initially found this issue in versions [...]
CVE: CVE-2015-8772 Vendor: McAfee - Intel Security Reported by: Kyriakos Economou Date of Release: 26/01/2016 Date of Fix: N/A Affected Products: Multiple Affected Version: McPvDrv.sys v4.6.111.0 Fixed Version: N/A Description: McAfee File Lock [...]
CVE: CVE-2015-8773 Vendor: McAfee - Intel Security Reported by: Kyriakos Economou Date of Release: 26/01/2016 Date of Fix: N/A Affected Products: Multiple Affected Version: McPvDrv.sys v4.6.111.0 Fixed Version: N/A Description: McAfee File Lock [...]
SHA-1: 1E6CF952D9F0D507A6AA98AD2B3327B83702BC17 Introduction Implementing all sort of methods to bypass anti-virus (AV) scanners and/or to make the analysis of a malware sample a lot harder, at least from a static point of view, [...]
Mitre assigned CVE-2015-7600 Introduction An alternative, but no less accurate title to this article would be ‘why you shouldn’t stick with non-supported software’. On the 30th of July 2014, the widely used Cisco [...]