Vulnerabilities

An Overview of OPSWAT File-based Vulnerability Detection

March 18, 2020
Author: Vinh T. Nguyen - Team Leader Introduction A vulnerability in a computer system is a weakness that an attacker can exploit to use that system in an unauthorized way [1]. Software vulnerability, in particular, is a cyber-security...

Privilege Escalation to System User on Windows 10 using CVE-2019-1405 and CVE-2019-1322

February 07, 2020
Author: Vuong Doan Minh, Software Engineer, OPSWAT Introduction Privilege escalation is a type of exploit that provides malicious actors with elevated access rights to protected resources in an application or operating system. Exploit...

BlueKeep: Detecting and Remediating a Critical and Wormable Remote Code Execution Vulnerability

December 26, 2019
Author: Khanh Nguyen Yen, Software Engineer, OPSWAT Introduction What is BlueKeep? BlueKeep is a critical remote code execution vulnerability that exists in Remote Desktop Services (formerly known as Terminal Services), one of...

Remote Code Execution Vulnerability in VLC - Detection & Remediation with OPSWAT

November 13, 2019
Author: Thuong Truong Hoai, Software Engineer, OPSWAT Introduction VideoLAN VLC Media Player 2.2.x is prone to a Use-After-Free vulnerability, which an attacker can leverage to execute arbitrary code via crafted MKV files. Failed...

Shadow IoT: A Fine Kettle Of Fish

October 09, 2019
Author: Randy Abrams, Sr. Security Analyst, OPSWAT. We all have a fairly good idea of what IoT is. Depending upon who you talk to, IoT is the Internet of Things, the Insecurity of Things, or the Internet of Terror. If you work in an...

How the CIA Turns Routers into Surveillance Devices

June 19, 2017
A new release from Wikileaks reveals information about a tool the CIA developed in order to infect and spy on targets from wireless routers. Once routers are compromised, attackers have access to everything users are doing and can carry...
Tags: News

OPSWAT Enhances Metadefender Cloud Client with Release of Detection for WannaCry Vulnerability

May 19, 2017
MetaDefender Cloud Client - Click image to expand OPSWAT today announced the release of MetaDefender Cloud Client 4.0.6. The new release includes support for detection of Microsoft Windows vulnerability MS17-010, the vulnerability...
Sign up for Blog updates
Get information and insight from the leaders in advanced threat prevention.