Steve Tornio
fcb05df3d8
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@9510 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-13 12:41:48 +00:00
HD Moore
843d632d55
Change the advisory link
...
git-svn-id: file:///home/svn/framework3/trunk@9504 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 19:33:42 +00:00
HD Moore
cb9a3211ee
Exploit for the UnrealIRCD backdoor
...
git-svn-id: file:///home/svn/framework3/trunk@9503 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 19:25:48 +00:00
Joshua Drake
698da3bdea
add CVE for cognos express
...
git-svn-id: file:///home/svn/framework3/trunk@9502 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 09:37:21 +00:00
Joshua Drake
b8c8880e44
re-enable exploitation of cve-2003-0201 on linux, see #2
...
git-svn-id: file:///home/svn/framework3/trunk@9500 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 04:28:01 +00:00
Joshua Drake
1961ee2a7e
minor whitespace fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9499 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 04:27:25 +00:00
natron
7cbc566c7b
Bug fixes for WMP11 and IE8, new configurable setting for exploit trigger, and output cleanup.
...
git-svn-id: file:///home/svn/framework3/trunk@9495 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 20:54:35 +00:00
Joshua Drake
85973b68dd
comment out EXETEMPLATE setting until #2046 is resolved
...
git-svn-id: file:///home/svn/framework3/trunk@9492 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 17:56:37 +00:00
Joshua Drake
75b906ac4c
switch to %uFFFF per secunia analysis, fix regexp handling
...
git-svn-id: file:///home/svn/framework3/trunk@9491 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 17:40:42 +00:00
Joshua Drake
cb69258fb2
fix regexp handling
...
git-svn-id: file:///home/svn/framework3/trunk@9490 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 17:40:12 +00:00
Joshua Drake
e32abab8dc
a HTTP -> an HTTP ( http://www.english-zone.com/grammar/a-anlessn.html )
...
git-svn-id: file:///home/svn/framework3/trunk@9488 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 16:12:05 +00:00
Joshua Drake
565397e989
fix CVE reference -- shakes stick
...
git-svn-id: file:///home/svn/framework3/trunk@9487 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 16:10:12 +00:00
Joshua Drake
c62b62d35d
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9486 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 15:17:23 +00:00
Steve Tornio
e2f4a6ad0d
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@9485 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 10:39:41 +00:00
HD Moore
7c87a96e65
Add CVE from Kurt S.
...
git-svn-id: file:///home/svn/framework3/trunk@9484 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 06:49:54 +00:00
natron
f4394bf0e0
Initial commit for Tavis Ormandy's Help Ctr bug. Needs improvement on stealthiness, but works for now.
...
-n
git-svn-id: file:///home/svn/framework3/trunk@9483 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-11 06:10:08 +00:00
Joshua Drake
619d088ada
updated test results
...
git-svn-id: file:///home/svn/framework3/trunk@9477 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 20:55:17 +00:00
Joshua Drake
d26ebfa365
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9476 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 20:31:21 +00:00
Joshua Drake
07ed2d636c
add browser version of cve-2010-1297
...
git-svn-id: file:///home/svn/framework3/trunk@9475 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 20:28:05 +00:00
Joshua Drake
1434aa8f23
add fileformat exploit for cve-2010-1297
...
git-svn-id: file:///home/svn/framework3/trunk@9473 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-10 19:52:43 +00:00
Joshua Drake
d8609b85e3
style compliance fixes
...
git-svn-id: file:///home/svn/framework3/trunk@9460 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 18:41:58 +00:00
Steve Tornio
816a149e2d
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@9459 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 18:25:32 +00:00
HD Moore
f64604e968
Merge in the evocam module
...
git-svn-id: file:///home/svn/framework3/trunk@9456 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-09 16:40:48 +00:00
Joshua Drake
f0c82d8646
add svn keywords
...
git-svn-id: file:///home/svn/framework3/trunk@9430 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 16:34:37 +00:00
Mario Ceballos
167e4289c4
put it back. will not play with svn for a month.
...
git-svn-id: file:///home/svn/framework3/trunk@9425 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 14:55:51 +00:00
Mario Ceballos
c5925ca37e
oops, not yet.
...
git-svn-id: file:///home/svn/framework3/trunk@9424 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 14:48:15 +00:00
Mario Ceballos
2444978286
remove it
...
git-svn-id: file:///home/svn/framework3/trunk@9423 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 14:46:22 +00:00
Mario Ceballos
2f8c342b54
added initial coverage for BID-39114
...
git-svn-id: file:///home/svn/framework3/trunk@9419 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 13:36:29 +00:00
Joshua Drake
b143172fff
bump ranking up
...
git-svn-id: file:///home/svn/framework3/trunk@9416 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 01:14:59 +00:00
Joshua Drake
26480092e0
add exploit for sompl m3u parsing - from dookie
...
git-svn-id: file:///home/svn/framework3/trunk@9415 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 01:11:31 +00:00
Joshua Drake
d7f2324b7b
update the set_ecx method to work on both win7 and xpsp3
...
git-svn-id: file:///home/svn/framework3/trunk@9414 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-04 00:47:14 +00:00
Joshua Drake
0a907a2e6f
add exploit for cve-2009-0546
...
git-svn-id: file:///home/svn/framework3/trunk@9405 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-03 05:10:45 +00:00
Joshua Drake
a8186ae6ae
add suggestion when auto-targeting fails, see #2022
...
git-svn-id: file:///home/svn/framework3/trunk@9396 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-02 16:29:14 +00:00
James Lee
ce8a9e9318
update space requirements
...
git-svn-id: file:///home/svn/framework3/trunk@9392 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-02 05:04:24 +00:00
Joshua Drake
24eb0f035f
point to nt4 template
...
git-svn-id: file:///home/svn/framework3/trunk@9376 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-26 22:46:10 +00:00
Joshua Drake
6d1e7bdaa5
big commit - lots of cmdstager changes
...
created 4 cmd stagers (instead of just one): CmdStagerVBS, CmdStagerDebugAsm, CmdStagerDebugWrite, CmdStagerTFTP
created a TFTPServer mixin
created Msf::Exploit::EXE mixin to generate executables
updated all uses of CmdStager to use CmdStagerVBS for the time being
add exploit for cve-2001-0333 using CmdStagerTFTP
updated tftp server to wait for transfers to finish (up to 30 seconds) before shutting down
write debug.exe stager stub in 16-bit assembly (used in CmdStagerDebugAsm)
git-svn-id: file:///home/svn/framework3/trunk@9375 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-26 22:39:56 +00:00
Steve Tornio
cfb850b41b
add osvdb refs
...
git-svn-id: file:///home/svn/framework3/trunk@9363 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-25 02:09:42 +00:00
Joshua Drake
acf45118a2
add exploit module for communicrypt activex from dookie
...
git-svn-id: file:///home/svn/framework3/trunk@9356 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 22:37:59 +00:00
Joshua Drake
c08041ed21
updated description, comments, call timeout
...
git-svn-id: file:///home/svn/framework3/trunk@9355 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 22:22:04 +00:00
Joshua Drake
be158fbcb3
whitespace tweaks
...
git-svn-id: file:///home/svn/framework3/trunk@9352 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 14:56:49 +00:00
Ramon de C Valle
db272ef7b5
Fix the aix/rpc_ttdbserverd_realpath.rb module to use @aixpayload instead of payload.encoded
...
git-svn-id: file:///home/svn/framework3/trunk@9350 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-24 02:06:14 +00:00
Joshua Drake
e5d73387e6
guess at what this address is
...
git-svn-id: file:///home/svn/framework3/trunk@9336 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-21 00:38:27 +00:00
Joshua Drake
cae27f9e7e
add exploit module for cve-2010-0033
...
git-svn-id: file:///home/svn/framework3/trunk@9299 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-14 02:43:55 +00:00
Steve Tornio
365f13551b
added refs. I think all the auxiliary and exploit modules should now be covered.
...
git-svn-id: file:///home/svn/framework3/trunk@9298 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-13 16:53:50 +00:00
Steve Tornio
1192e0860e
add osvdb ref
...
git-svn-id: file:///home/svn/framework3/trunk@9294 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 19:30:54 +00:00
HD Moore
d65146ae0c
Downgrade MS04_011 to Great, as we have better exploits
...
git-svn-id: file:///home/svn/framework3/trunk@9291 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 16:36:45 +00:00
Joshua Drake
a964d403be
merge patch from scriptjunkie, fixes #1875
...
git-svn-id: file:///home/svn/framework3/trunk@9286 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 22:28:18 +00:00
Joshua Drake
711e08b5e9
make sure to use correct verbs, thanks mc!
...
git-svn-id: file:///home/svn/framework3/trunk@9285 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 16:20:46 +00:00
Joshua Drake
7f758d5a02
add VERB option to enable exploiting cve-2010-0738
...
git-svn-id: file:///home/svn/framework3/trunk@9282 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 09:14:36 +00:00
Joshua Drake
5897656261
switch ret to an address for both v12 and v13
...
git-svn-id: file:///home/svn/framework3/trunk@9279 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 01:56:20 +00:00