Top of Page
Skip main navigation

Virus Information

For information on viruses, you can contact us at virushelp@nova.edu . You can also check the following sites listed below online for more information.

Check for Viruses

If you suspect that you have a virus on your computer and would like to scan your computer you can go to Trend Micro HouseCall. This is a free service provided by Trend Micro.

Virus Information

Hoax Information

Trend Micro Security Advisories

  • February 2020 - Microsoft Releases Security Patches - Microsoft addresses several vulnerabilities in its February security bulletin. Trend Micro Deep Security covers the following:CVE-2020-0674 - Scripting Engine Memory Corruption VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in the scripting engine of Internet explorer in the way it handles objects in memory. Attackers looking to exploit this vulnerability could host a specially crafted website that contains an exploit.CVE-2020-0681 - Remote Desktop Client Remote Code Execution VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in the Windows Remote Desktop Client. It exists when a user connects to a malicious server. Attackers looking to exploit this vulnerability could find ways to convince a user of a vulnerable machine to connect to a malicious server.CVE-2020-0692 - Microsoft Exchange Server Elevation of Privilege VulnerabilityRisk Rating: ImportantThis elevation of privilege vulnerability, that requires an enabled Exchange Web Services (EWS), exists in the Microsoft Exchange Server. Attackers looking to exploit this vulnerability must find a way to change Security Access Token parameters and forward that to the vulnerable Microsoft Exchange Server..Read More
  • January 2020 - Microsoft Releases Security Patches - Microsoft addresses several vulnerabilities in its January security bulletin. Trend Micro Deep Security covers the following:CVE-2020-0609 - Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution VulnerabilityRisk Rating: CriticalThis remote code execution, pre-authentication vulnerability exists in the Windows Remote Desktop Gateway (RD Gateway) and requires no user interaction. Attackers looking to exploit this vulnerability could send a specially crafted request via RDP.CVE-2020-0610 - Windows Remote Desktop Gateway (RD Gateway) Remote Code Execution VulnerabilityRisk Rating: CriticalThis remote code execution, pre-authentication vulnerability exists in the Windows Remote Desktop Gateway (RD Gateway) and requires no user interaction. Attackers looking to exploit this vulnerability could send a specially crafted request via RDP.CVE-2020-0652 - Microsoft Office Memory Corruption VulnerabilityRisk Rating: ImportantThis remote code execution vulnerability exists in the improper handling of objects by Microsoft Office. Attackers looking to exploit this vulnerability must find a way for a user to open a website that contains the exploit, or to open a specially crafted file.CVE-2020-0601 - Windows CryptoAPI Spoofing VulnerabilityRisk Rating: ImportantThis spoofing vulnerability exists in the validation of Elliptic Curve Cryptography (ECC) certificates by the the Windows CryptoAPI (crypt32.dll). A successful exploitation of this vulnerability could allow man-in-the-middle (MiTM) attacks..Read More
  • December 2019 - Microsoft Releases Security Patches - Microsoft addresses several vulnerabilities in its December security bulletin. Trend Micro Deep Security covers the following:CVE-2019-0617 - Jet Database Engine Remote Code Execution VulnerabilityRisk Rating: ImportantThis remote code execution vulnerability exists in the Windows Jet Database engine in respect to handling objects in memory. Attackers looking to exploit this vulnerability must find a way to convince a user to open a specially crafted file.CVE-2019-1485 - VBScript Remote Code Execution VulnerabilityRisk Rating: ImportantThis remote code execution vulnerability exists in the improper handling of objects in memory by VBScript engine. Attackers looking to exploit this vulnerability must find a way to convince a user to access a malicious website where the exploit is hosted.CVE-2019-0853 - GDI Remote Code Execution VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in the improper handling of objects by the Windows Graphics Device Interface (GDI). Attackers looking to exploit this vulnerability must find a way for a user to open a website that contains the exploit, or to open a specially crafted file via file-sharing.CVE-2019-1458 - Win32k Elevation of Privilege VulnerabilityRisk Rating: ImportantThis elevation of privilege vulnerability exists in the improper handling of objects by the the Win32k component in Windows. Attackers looking to exploit this vulnerability must find a way for a user to open a specially crafted application.CVE-2019-1439 - Windows GDI Information Disclosure VulnerabilityRisk Rating: ImportantThis information disclosure vulnerability exists in the improper handling of objects in memory by the Windows GDI component. Attackers looking to exploit this vulnerability must find a way for a user to execute a specially crafted document.CVE-2019-1117 - DirectWrite Remote Code Execution VulnerabilityRisk Rating: ImportantThis remote code execution vulnerability exists in the improper handling of objects in memory by the DirectWrite. Attackers looking to exploit this vulnerability must find a way for a user to execute a specially crafted document.CVE-2019-1118 - DirectWrite Remote Code Execution VulnerabilityRisk Rating: ImportantThis remote code execution vulnerability exists in the improper handling of objects in memory by the DirectWrite. Attackers looking to exploit this vulnerability must find a way for a user to execute a specially crafted document.CVE-2019-1119 - DirectWrite Remote Code Execution VulnerabilityRisk Rating: ImportantThis remote code execution vulnerability exists in the improper handling of objects in memory by the DirectWrite. Attackers looking to exploit this vulnerability must find a way for a user to execute a specially crafted document.CVE-2019-0959 - Windows Common Log File System Driver Elevation of Privilege VulnerabilityRisk Rating: ImportantThis elevation of privilege vulnerability exists in the improper handling of objects in memory by the Windows Common Log File System. Attackers looking to exploit this vulnerability must find a way for a user to execute a specially crafted application..Read More
  • November 2019 - Microsoft Releases Security Patches - Microsoft addresses several vulnerabilities in its November security bulletin. Trend Micro Deep Security covers the following:CVE-2019-1390 - BScript Remote Code Execution VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in the VBScript engine in respect to handling objects in memory. Attackers looking to exploit this vulnerability must find a way to convince a user to access a malicious website where the exploit is hosted.CVE-2019-1429 - Scripting Engine Memory Corruption VulnerabilityRisk Rating: CriticalThis elevation of privilege vulnerability exists in the improper handling of objects in memory by the scripting engine in Internet Explorer. Attackers looking to exploit this vulnerability must find a way to convince a user to access a malicious website where the exploit is hosted.CVE-2019-1359 - Jet Database Engine Remote Code Execution VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in the improper handling of objects by the Windows Jet Database Engine. Attackers looking to exploit this vulnerability must find a way for a user to open a specially crafted file.CVE-2019-1358 - Jet Database Engine Remote Code Execution VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in the improper handling of objects by the Windows Jet Database Engine. Attackers looking to exploit this vulnerability must find a way for a user to open a specially crafted file.CVE-2019-1311 - Windows Imaging API Remote Code Execution VulnerabilityRisk Rating: ImportantThis remote code execution vulnerability exists in the improper handling of objects in memory by the Windows Imaging API. Attackers looking to exploit this vulnerability must find a way for a user to execute a specially crafted .WIM file..Read More
  • October 2019 - Microsoft Releases Security Patches - Microsoft addresses several vulnerabilities in its October security bulletin. Trend Micro Deep Security covers the following:CVE-2019-1335 - Chakra Scripting Engine Memory Corruption VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in Microsoft Edge's Chakra scripting engine in respect to handling objects in memory. Attackers looking to exploit this vulnerability must find a way to convince a user to access a malicious website where the exploit is hosted.CVE-2019-1364 - Win32k Elevation of Privilege VulnerabilityRisk Rating: ImportantThis elevation of privilege vulnerability exists in the improper handling of objects in memory by the Windows kernel-mode driver. Attackers looking to exploit this vulnerability must find a way to be logged on to the vulnerable system.CVE-2019-1060 - MS XML Remote Code Execution VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in the improper parsing of user input by the Microsoft XML Core Services MSXML. Attackers looking to exploit this vulnerability must find a way for a user to access a website using Internet Explorer.CVE-2019-1238 - VBScript Remote Code Execution VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in the improper handling of objects in memory by the VBScript engine. Attackers looking to exploit this vulnerability must find a way for a user to access a website where the exploit is hosted.CVE-2019-1239 - VBScript Remote Code Execution VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in the improper handling of objects in memory by the VBScript engine. Attackers looking to exploit this vulnerability must find a way for a user to access a website where the exploit is hosted.CVE-2019-1307 - Chakra Scripting Engine Memory Corruption VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in the improper handling of objects in memory by the Chakra scripting engine in Microsoft Edge. Attackers looking to exploit this vulnerability must find a way for a user to access a website where the exploit is hosted.CVE-2019-1308 - Chakra Scripting Engine Memory Corruption VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in the improper handling of objects in memory by the Chakra scripting engine in Microsoft Edge. Attackers looking to exploit this vulnerability must find a way for a user to access a website where the exploit is hosted.CVE-2019-1366 - Chakra Scripting Engine Memory Corruption VulnerabilityRisk Rating: CriticalThis remote code execution vulnerability exists in the improper handling of objects in memory by the Chakra scripting engine in Microsoft Edge. Attackers looking to exploit this vulnerability must find a way for a user to access a website where the exploit is hosted.CVE-2019-1361 - Microsoft Graphics Components Information Disclosure VulnerabilityRisk Rating: ImportantThis information disclosure vulnerability exists in the improper handling of objects in memory by the Microsoft Graphics Components. Attackers looking to exploit this vulnerability must find a way for a user to open a specially crafted file..Read More
Return to top of page