Threat Encyclopedia

Browse the Fortiguard Labs extensive encyclopedia of threats. Click any title to view more details of the threat. Can't find what you are looking for? Try using the search bar above to find a specific threat description.

An elevation of privilege vulnerability exists when ActiveX Installer service may allow access to files without proper authentication....

Nov 12, 2019
A security feature bypass vulnerability exists when Microsoft Edge improperly handles extension requests and fails to request...

Nov 12, 2019
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker...

Nov 12, 2019
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in...

Nov 12, 2019
A remote code execution vulnerability exists in Microsoft Exchange through the deserialization of metadata via PowerShell. An...

Nov 12, 2019
An information disclosure vulnerability exists in Microsoft Office software when the software fails to properly handle objects...

Nov 12, 2019
A spoofing vulnerability exists when Office Online does not validate origin in cross-origin communications handlers correctly....

Nov 12, 2019
A spoofing vulnerability exists when Office Online does not validate origin in cross-origin communications handlers correctly....

Nov 12, 2019
A security feature bypass vulnerability exists when Microsoft Office does not validate URLs. An attacker could send a victim a...

Nov 12, 2019
An information disclosure vulnerability exists in Microsoft SharePoint when an attacker uploads a specially crafted file to the...

Nov 12, 2019
An information disclosure vulnerability exists when the Windows Servicing Stack allows access to unprivileged file locations....

Nov 12, 2019
A remote code execution vulnerability exists when Windows Media Foundation improperly parses specially crafted QuickTime media...

Nov 12, 2019
A security feature bypass vulnerability exists where a NETLOGON message is able to obtain the session key and sign messages. To...

Nov 12, 2019
A local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls. An attacker who successfully exploited...

Nov 12, 2019
An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory. An attacker who...

Nov 12, 2019
An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory. An attacker who...

Nov 12, 2019
A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input...

Nov 12, 2019
A remote code execution vulnerability exists when Windows Hyper-V Network Switch on a host server fails to properly validate input...

Nov 12, 2019
A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker...

Nov 12, 2019
A security feature bypass vulnerability exists when Windows Netlogon improperly handles a secure communications channel. An attacker...

Nov 12, 2019