David Rude
|
3d7715ce60
|
Added Cisco AnyConnect VPN Client ActiveX download and execute exploit
git-svn-id: file:///home/svn/framework3/trunk@12868 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-06-06 18:52:26 +00:00 |
Wei Chen
|
2e861a2fa8
|
Added CVE
git-svn-id: file:///home/svn/framework3/trunk@12865 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-06-06 02:35:40 +00:00 |
James Lee
|
1c4bf118e8
|
add a version check
git-svn-id: file:///home/svn/framework3/trunk@12847 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-06-03 23:47:44 +00:00 |
James Lee
|
bee19278d7
|
add a new javascript obfuscation engine using rkelly for parsing. use it in browser_autopwn and ms10_018_ie_behaviors. see #1003
git-svn-id: file:///home/svn/framework3/trunk@12839 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-06-03 00:36:26 +00:00 |
Steve Tornio
|
6890ec5610
|
add cve and osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@12816 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-06-02 12:24:25 +00:00 |
David Rude
|
bfdb3a2a36
|
Added GoldenFTP exploit
git-svn-id: file:///home/svn/framework3/trunk@12812 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-06-02 01:10:22 +00:00 |
Steve Tornio
|
f43368ebe4
|
add osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@12779 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-31 14:33:19 +00:00 |
Wei Chen
|
396e476a03
|
Updated description, documented packet header a bit
git-svn-id: file:///home/svn/framework3/trunk@12774 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-30 21:17:35 +00:00 |
Wei Chen
|
b950219b0d
|
Fix typo
git-svn-id: file:///home/svn/framework3/trunk@12773 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-30 21:06:56 +00:00 |
Wei Chen
|
4d044ee592
|
Added 7-Technologies IGSS 9.0 Write File / EXE packet handling exploit
git-svn-id: file:///home/svn/framework3/trunk@12772 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-30 21:00:49 +00:00 |
James Lee
|
5b91eadb87
|
fix the string replacement and do it at setup time instead of for every request
git-svn-id: file:///home/svn/framework3/trunk@12747 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-27 19:36:12 +00:00 |
James Lee
|
cd3f306ef2
|
clarify info a bit; make APPLETNAME option actually do something.
git-svn-id: file:///home/svn/framework3/trunk@12746 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-27 19:13:47 +00:00 |
Jonathan Cran
|
ef7a7adc1e
|
escape slashes, thanks aushack
git-svn-id: file:///home/svn/framework3/trunk@12738 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-27 06:14:52 +00:00 |
James Lee
|
5a54a408f5
|
stupid debugging stuff
git-svn-id: file:///home/svn/framework3/trunk@12736 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-26 19:10:54 +00:00 |
James Lee
|
c5781ae515
|
add support for PKCS12 (.pfx) cert/key files and cert chains in PEM files
git-svn-id: file:///home/svn/framework3/trunk@12735 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-26 17:52:12 +00:00 |
James Lee
|
11a1b5dcad
|
fix the requires for java signing.
git-svn-id: file:///home/svn/framework3/trunk@12719 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-25 18:02:02 +00:00 |
James Lee
|
812bae9df9
|
add support for signing applets (or any other jar) with openssl. this removes the need for a dependency on RJB
git-svn-id: file:///home/svn/framework3/trunk@12718 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-25 16:45:20 +00:00 |
Steve Tornio
|
782b1c6dd6
|
add stratsec ref, update disclosure to match public timeline
git-svn-id: file:///home/svn/framework3/trunk@12716 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-25 13:57:12 +00:00 |
Patrick Webster
|
5617d23635
|
Removed erroneous awstatstotals_multisort print_status.
git-svn-id: file:///home/svn/framework3/trunk@12715 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-25 10:45:36 +00:00 |
Patrick Webster
|
51ce0dba58
|
Added awstatstotals_multisort exploit module.
git-svn-id: file:///home/svn/framework3/trunk@12714 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-25 10:42:37 +00:00 |
Wei Chen
|
c1233db428
|
ugh! It's visiwavereport.exe, not visiwave.exe.
git-svn-id: file:///home/svn/framework3/trunk@12711 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-25 04:48:25 +00:00 |
Wei Chen
|
0c60fe5a4b
|
Couldn't help but patch-diff it and updated the description again
git-svn-id: file:///home/svn/framework3/trunk@12710 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-25 04:45:17 +00:00 |
Wei Chen
|
6b6c6b2f64
|
We're actually not using 'Ret', it is removed.
git-svn-id: file:///home/svn/framework3/trunk@12706 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-24 23:15:06 +00:00 |
Wei Chen
|
af4b8bfef6
|
RCA done, the new description explains what really happens that causes the vulnerability.
git-svn-id: file:///home/svn/framework3/trunk@12705 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-24 22:58:10 +00:00 |
Wei Chen
|
f80c66ee8f
|
Disclosure date is actually May 10 2011, confirmed by Mr_Me.
git-svn-id: file:///home/svn/framework3/trunk@12698 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-23 23:55:03 +00:00 |
Steve Tornio
|
fd6a3def6e
|
add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12695 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-23 19:50:57 +00:00 |
James Lee
|
ef48240606
|
Make it obvious which exploit is handling a request
git-svn-id: file:///home/svn/framework3/trunk@12693 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-23 17:05:44 +00:00 |
Wei Chen
|
d900892da8
|
Disclosure date change. '2007' wouldn't make sense now, would it?
git-svn-id: file:///home/svn/framework3/trunk@12692 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-23 16:30:07 +00:00 |
Wei Chen
|
8089d10618
|
Added VisiWave Site Survey Report buffer overflow exploit
git-svn-id: file:///home/svn/framework3/trunk@12691 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-23 16:28:38 +00:00 |
Steve Tornio
|
28d5febfad
|
add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12688 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-22 23:41:15 +00:00 |
Wei Chen
|
e916a61eec
|
Date format fix
git-svn-id: file:///home/svn/framework3/trunk@12685 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-22 22:09:52 +00:00 |
Wei Chen
|
d9c0d1c941
|
Added Magix Musik Maker 16 buffer overflow exploit
git-svn-id: file:///home/svn/framework3/trunk@12684 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-22 22:08:09 +00:00 |
James Lee
|
36983436db
|
play a little nicer with browser autopwn by not spraying the heap if creating the vulnerable object failed
git-svn-id: file:///home/svn/framework3/trunk@12667 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-19 19:45:14 +00:00 |
James Lee
|
0b88468617
|
out with the new, in with the old. css_clip is pretty unreliable in my tests, go back to using ie_behaviors in browser autopwn
git-svn-id: file:///home/svn/framework3/trunk@12663 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-19 16:33:55 +00:00 |
Wei Chen
|
f9c49ef9ce
|
Comment update (this is still for the egghunter fix: bug #4552)
git-svn-id: file:///home/svn/framework3/trunk@12657 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-18 19:50:22 +00:00 |
Wei Chen
|
6345fec06c
|
checksum support for egghunter disabled, because not enough room for it. See r4552.
git-svn-id: file:///home/svn/framework3/trunk@12656 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-18 19:48:06 +00:00 |
James Lee
|
04efaf9281
|
referencing navigator.javaEnabled breaks ie6, only check navigator.javaEnabled();
git-svn-id: file:///home/svn/framework3/trunk@12655 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-17 22:44:39 +00:00 |
Steve Tornio
|
72692d27f7
|
add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12643 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-17 11:28:25 +00:00 |
Wei Chen
|
4f56444f2c
|
Fix for nops
git-svn-id: file:///home/svn/framework3/trunk@12639 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-16 19:30:17 +00:00 |
Wei Chen
|
95700687de
|
Added IGSS 9 buffer overflow
git-svn-id: file:///home/svn/framework3/trunk@12638 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-16 19:02:05 +00:00 |
James Lee
|
486c0556d0
|
don't leave unnecessary evil-looking logs
git-svn-id: file:///home/svn/framework3/trunk@12604 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-12 22:46:43 +00:00 |
Wei Chen
|
40894c3726
|
Moving Iconics webhmi activeX exploit from browser to scada directory
git-svn-id: file:///home/svn/framework3/trunk@12584 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-11 20:45:54 +00:00 |
Steve Tornio
|
d0c93f7e49
|
add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12582 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-11 11:33:16 +00:00 |
Wei Chen
|
5d59d819ac
|
Added SPlayer Content-Type bof
git-svn-id: file:///home/svn/framework3/trunk@12581 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-11 00:18:11 +00:00 |
Steve Tornio
|
b84df80983
|
add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12576 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-10 19:16:07 +00:00 |
Wei Chen
|
105b5799af
|
Added ICONICS WebHMI ActiveX SetActiveXGuid bof
git-svn-id: file:///home/svn/framework3/trunk@12573 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-10 18:07:15 +00:00 |
Steve Tornio
|
c87ba8f026
|
add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12557 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-06 19:33:01 +00:00 |
Joshua Drake
|
5b8e4707cc
|
Add an exploit for CVE-2011-1574 (libmodplug via VLC 1.1.8)
git-svn-id: file:///home/svn/framework3/trunk@12544 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-06 15:29:07 +00:00 |
Wei Chen
|
8d78a47e45
|
get_resource() added to 'src' parameter
git-svn-id: file:///home/svn/framework3/trunk@12543 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-05 22:10:30 +00:00 |
David Rude
|
c80d454dd7
|
fixes some logic which restricted the use of other windows targets
git-svn-id: file:///home/svn/framework3/trunk@12542 4d416f70-5f16-0410-b530-b9f4589650da
|
2011-05-05 15:11:46 +00:00 |