This archive contains all of the 158 exploits added to Packet Storm in November, 2014.
24de2b71477635f2bdb96e6990ed37de9cb8848dd29210ffe8ddd1d0ec948734
This Metasploit module exploits Windows OLE Automation Array Vulnerability known as CVE-2014-6332. The vulnerability affects Internet Explorer 3.0 until version 11 within Windows95 up to Windows 10. Powershell is required on the target machine. On Internet Explorer versions using Protected Mode, the user has to manually allow powershell.exe to execute in order to be compromised.
a21c73516ca752edd0b68c3886ddd782c3596ad30278942d9c8600f98098d65b
SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. Connections are transparently intercepted through a network address translation engine and redirected to SSLsplit. SSLsplit terminates SSL/TLS and initiates a new SSL/TLS connection to the original destination address, while logging all data transmitted. SSLsplit is intended to be useful for network forensics and penetration testing.
f230772efe25557ac62987a865b889bd9253345acb4f0ad2841c7848e7993ce0
Mandriva Linux Security Advisory 2014-237 - An assumption in Mojolicious versions prior to 5.48 had an issue where CGI parameter handling could result in parameter injection attacks.
98859800d41e5970bfc20ef732e417c65eb6261c997609728209566a9a7bf6ef