metasploit-framework

Commit Graph

Author	SHA1	Message	Date
Brent Cook	6300758c46	use https for metaploit.com links	2017-07-24 06:26:21 -07:00
Matthew Daley	52363aec13	Add module for CVE-2017-8895, UAF in Backup Exec Windows agent This module exploits a use-after-free vulnerability in the handling of SSL NDMP connections in Veritas/Symantec Backup Exec's Remote Agent for Windows. When SSL is re-established on a NDMP connection that previously has had SSL established, the BIO struct for the connection's previous SSL session is reused, even though it has previously been freed. Successful exploitation will give remote code execution as the user of the Backup Exec Remote Agent for Windows service, almost always NT AUTHORITY\SYSTEM.	2017-05-24 00:18:20 +12:00

Author

SHA1

Message

Date

Brent Cook

6300758c46

use https for metaploit.com links

2017-07-24 06:26:21 -07:00

Matthew Daley

52363aec13

Add module for CVE-2017-8895, UAF in Backup Exec Windows agent

This module exploits a use-after-free vulnerability in the handling of
SSL NDMP connections in Veritas/Symantec Backup Exec's Remote Agent for
Windows. When SSL is re-established on a NDMP connection that previously
has had SSL established, the BIO struct for the connection's previous
SSL session is reused, even though it has previously been freed.

Successful exploitation will give remote code execution as the user of
the Backup Exec Remote Agent for Windows service, almost always
NT AUTHORITY\SYSTEM.

2017-05-24 00:18:20 +12:00

2 Commits (f4d9788454a19ce25cbb0ac8284dba443bf37cad)