Commit Graph

1514 Commits (edfd16ca0caa196f6e6e4d443e31547c129b6510)

Author SHA1 Message Date
Steve Tornio fcb05df3d8 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9510 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-13 12:41:48 +00:00
HD Moore 843d632d55 Change the advisory link
git-svn-id: file:///home/svn/framework3/trunk@9504 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 19:33:42 +00:00
HD Moore cb9a3211ee Exploit for the UnrealIRCD backdoor
git-svn-id: file:///home/svn/framework3/trunk@9503 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 19:25:48 +00:00
Joshua Drake 698da3bdea add CVE for cognos express
git-svn-id: file:///home/svn/framework3/trunk@9502 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 09:37:21 +00:00
Joshua Drake b8c8880e44 re-enable exploitation of cve-2003-0201 on linux, see #2
git-svn-id: file:///home/svn/framework3/trunk@9500 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 04:28:01 +00:00
Joshua Drake 1961ee2a7e minor whitespace fixes
git-svn-id: file:///home/svn/framework3/trunk@9499 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 04:27:25 +00:00
natron 7cbc566c7b Bug fixes for WMP11 and IE8, new configurable setting for exploit trigger, and output cleanup.
git-svn-id: file:///home/svn/framework3/trunk@9495 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 20:54:35 +00:00
Joshua Drake 85973b68dd comment out EXETEMPLATE setting until #2046 is resolved
git-svn-id: file:///home/svn/framework3/trunk@9492 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 17:56:37 +00:00
Joshua Drake 75b906ac4c switch to %uFFFF per secunia analysis, fix regexp handling
git-svn-id: file:///home/svn/framework3/trunk@9491 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 17:40:42 +00:00
Joshua Drake cb69258fb2 fix regexp handling
git-svn-id: file:///home/svn/framework3/trunk@9490 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 17:40:12 +00:00
Joshua Drake e32abab8dc a HTTP -> an HTTP (http://www.english-zone.com/grammar/a-anlessn.html)
git-svn-id: file:///home/svn/framework3/trunk@9488 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 16:12:05 +00:00
Joshua Drake 565397e989 fix CVE reference -- shakes stick
git-svn-id: file:///home/svn/framework3/trunk@9487 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 16:10:12 +00:00
Joshua Drake c62b62d35d style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9486 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 15:17:23 +00:00
Steve Tornio e2f4a6ad0d add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9485 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 10:39:41 +00:00
HD Moore 7c87a96e65 Add CVE from Kurt S.
git-svn-id: file:///home/svn/framework3/trunk@9484 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 06:49:54 +00:00
natron f4394bf0e0 Initial commit for Tavis Ormandy's Help Ctr bug. Needs improvement on stealthiness, but works for now.
-n


git-svn-id: file:///home/svn/framework3/trunk@9483 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 06:10:08 +00:00
Joshua Drake 619d088ada updated test results
git-svn-id: file:///home/svn/framework3/trunk@9477 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 20:55:17 +00:00
Joshua Drake d26ebfa365 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9476 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 20:31:21 +00:00
Joshua Drake 07ed2d636c add browser version of cve-2010-1297
git-svn-id: file:///home/svn/framework3/trunk@9475 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 20:28:05 +00:00
Joshua Drake 1434aa8f23 add fileformat exploit for cve-2010-1297
git-svn-id: file:///home/svn/framework3/trunk@9473 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 19:52:43 +00:00
Joshua Drake d8609b85e3 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9460 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 18:41:58 +00:00
Steve Tornio 816a149e2d add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9459 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 18:25:32 +00:00
HD Moore f64604e968 Merge in the evocam module
git-svn-id: file:///home/svn/framework3/trunk@9456 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 16:40:48 +00:00
Joshua Drake f0c82d8646 add svn keywords
git-svn-id: file:///home/svn/framework3/trunk@9430 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 16:34:37 +00:00
Mario Ceballos 167e4289c4 put it back. will not play with svn for a month.
git-svn-id: file:///home/svn/framework3/trunk@9425 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 14:55:51 +00:00
Mario Ceballos c5925ca37e oops, not yet.
git-svn-id: file:///home/svn/framework3/trunk@9424 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 14:48:15 +00:00
Mario Ceballos 2444978286 remove it
git-svn-id: file:///home/svn/framework3/trunk@9423 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 14:46:22 +00:00
Mario Ceballos 2f8c342b54 added initial coverage for BID-39114
git-svn-id: file:///home/svn/framework3/trunk@9419 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 13:36:29 +00:00
Joshua Drake b143172fff bump ranking up
git-svn-id: file:///home/svn/framework3/trunk@9416 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 01:14:59 +00:00
Joshua Drake 26480092e0 add exploit for sompl m3u parsing - from dookie
git-svn-id: file:///home/svn/framework3/trunk@9415 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 01:11:31 +00:00
Joshua Drake d7f2324b7b update the set_ecx method to work on both win7 and xpsp3
git-svn-id: file:///home/svn/framework3/trunk@9414 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 00:47:14 +00:00
Joshua Drake 0a907a2e6f add exploit for cve-2009-0546
git-svn-id: file:///home/svn/framework3/trunk@9405 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 05:10:45 +00:00
Joshua Drake a8186ae6ae add suggestion when auto-targeting fails, see #2022
git-svn-id: file:///home/svn/framework3/trunk@9396 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-02 16:29:14 +00:00
James Lee ce8a9e9318 update space requirements
git-svn-id: file:///home/svn/framework3/trunk@9392 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-02 05:04:24 +00:00
Joshua Drake 24eb0f035f point to nt4 template
git-svn-id: file:///home/svn/framework3/trunk@9376 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-26 22:46:10 +00:00
Joshua Drake 6d1e7bdaa5 big commit - lots of cmdstager changes
created 4 cmd stagers (instead of just one): CmdStagerVBS, CmdStagerDebugAsm, CmdStagerDebugWrite, CmdStagerTFTP
created a TFTPServer mixin
created Msf::Exploit::EXE mixin to generate executables
updated all uses of CmdStager to use CmdStagerVBS for the time being
add exploit for cve-2001-0333 using CmdStagerTFTP
updated tftp server to wait for transfers to finish (up to 30 seconds) before shutting down
write debug.exe stager stub in 16-bit assembly (used in CmdStagerDebugAsm)


git-svn-id: file:///home/svn/framework3/trunk@9375 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-26 22:39:56 +00:00
Steve Tornio cfb850b41b add osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@9363 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-25 02:09:42 +00:00
Joshua Drake acf45118a2 add exploit module for communicrypt activex from dookie
git-svn-id: file:///home/svn/framework3/trunk@9356 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 22:37:59 +00:00
Joshua Drake c08041ed21 updated description, comments, call timeout
git-svn-id: file:///home/svn/framework3/trunk@9355 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 22:22:04 +00:00
Joshua Drake be158fbcb3 whitespace tweaks
git-svn-id: file:///home/svn/framework3/trunk@9352 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 14:56:49 +00:00
Ramon de C Valle db272ef7b5 Fix the aix/rpc_ttdbserverd_realpath.rb module to use @aixpayload instead of payload.encoded
git-svn-id: file:///home/svn/framework3/trunk@9350 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 02:06:14 +00:00
Joshua Drake e5d73387e6 guess at what this address is
git-svn-id: file:///home/svn/framework3/trunk@9336 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 00:38:27 +00:00
Joshua Drake cae27f9e7e add exploit module for cve-2010-0033
git-svn-id: file:///home/svn/framework3/trunk@9299 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-14 02:43:55 +00:00
Steve Tornio 365f13551b added refs. I think all the auxiliary and exploit modules should now be covered.
git-svn-id: file:///home/svn/framework3/trunk@9298 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-13 16:53:50 +00:00
Steve Tornio 1192e0860e add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9294 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 19:30:54 +00:00
HD Moore d65146ae0c Downgrade MS04_011 to Great, as we have better exploits
git-svn-id: file:///home/svn/framework3/trunk@9291 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 16:36:45 +00:00
Joshua Drake a964d403be merge patch from scriptjunkie, fixes #1875
git-svn-id: file:///home/svn/framework3/trunk@9286 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 22:28:18 +00:00
Joshua Drake 711e08b5e9 make sure to use correct verbs, thanks mc!
git-svn-id: file:///home/svn/framework3/trunk@9285 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 16:20:46 +00:00
Joshua Drake 7f758d5a02 add VERB option to enable exploiting cve-2010-0738
git-svn-id: file:///home/svn/framework3/trunk@9282 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 09:14:36 +00:00
Joshua Drake 5897656261 switch ret to an address for both v12 and v13
git-svn-id: file:///home/svn/framework3/trunk@9279 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 01:56:20 +00:00