This Metasploit module connects to a specified Metasploit RPC server and uses the 'console.write' procedure to execute operating system commands. Valid credentials are required to access the RPC interface. This Metasploit module has been tested successfully on Metasploit 4.15 on Kali 1.0.6; Metasploit 4.14 on Kali 2017.1; and Metasploit 4.14 on Windows 7 SP1.
b76c5685a0298b752e8aaaf4f214e190Apple Security Advisory 2017-07-19-7 - iCloud for Windows 6.2.2 is now available and addresses information disclosure, code execution, and various other vulnerabilities.
4f380c77e8e99020d7e7e86a74e6ebaeWireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers.
bb81d0ecf3a8ed46bedfaeae6fd318a8Microsoft Internet Explorer suffers from a memory corruption vulnerability in CMarkup::DestroySplayTree. The bug was confirmed on IE version 11.0.9600.18617 (Update version 11.0.40) running on Windows 7 64-bit.
cdc2215843df74b066e451921f6fea5cThe Microsoft Windows kernel suffers from a nsiproxy/netio pool memory disclosure vulnerability in the handling of IOCTL 0x120007 (NsiGetParameter).
5fb0a00432c51065a4d436704124521cMicrosoft Windows has a bad fix for the COM session moniker that can allow for elevation of privilege.
3415ad73c8d69869f7f6b54856151c87Microsoft Windows versions 7, 8.1, 2008 R2, 2012 R2, and 2016 R2 EternalBlue SMB remote code execution exploit that leverages the issue noted in MS17-0101.
a8dcb06deac0f2e6a77e10a458a2c807Microsoft .NET Framework version 4.7 suffers from dll hijacking vulnerabilities.
5b1e4d178e8382d65a9f6aa04db6bba5Microsoft Machine Debug Manager (mdm) suffers from dll hijacking vulnerabilities.
3c06775c91214d9d0ce304e8f6548704Microsoft Office Patch Installer suffers from dll hijacking vulnerabilities.
2b690a8c242cf48c547db68a1f8c4cd8This Metasploit module exploits a use-after-free vulnerability in the handling of SSL NDMP connections in Veritas/Symantec Backup Exec's Remote Agent for Windows. When SSL is re-established on a NDMP connection that previously has had SSL established, the BIO struct for the connection's previous SSL session is reused, even though it has previously been freed. This Metasploit module supports 3 specific versions of the Backup Exec agent in the 14, 15 and 16 series on 64-bit and 32-bit versions of Windows and has been tested from Vista to Windows 10.
655876964f7bb9a52e889ac3edace35fThe Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!NtQueryInformationWorkerFactory (WorkerFactoryBasicInformation).
b23542b84fc8d61d694be45f97c3e24fThe Microsoft Windows kernel suffers from an ATMFD.DLL out-of-bounds read vulnerability via a malformed Name INDEX in the CFF table.
7c585bfb15ecbd04c869fd0bab3f4c18The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!NtQueryInformationResourceManager (information class 0).
1c6c0db81091aedab0fc82d1ee665b44Microsoft Windows suffers from a Uniscribe font processing out-of-bounds memory read vulnerability in USP10!otlReverseChainingLookup::apply.
f54bb43b7e3d784d3293a2150ebbdd5eMicrosoft Windows suffers from a Uniscribe font processing out-of-bounds memory read vulnerability in USP10!otlValueRecord::adjustPos.
2ff8367bd8ecac85002a6f0c6fb24843Microsoft Windows suffers from a Uniscribe font processing out-of-bounds memory read vulnerability in USP10!otlSinglePosLookup::getCoverageTable.
e6c4980f9c9f36d68caa9f166c1881e1Microsoft Windows suffers from a Uniscribe font processing out-of-bounds memory read vulnerability in USP10!NextCharInLiga.
dac31e7974d5da485568999ebe57b562Microsoft Windows suffers from a Uniscribe font processing out-of-bounds memory read vulnerability in USP10!CreateIndexTable.
0825201091faf0fc3926a5c223a6080eMicrosoft Windows suffers from a Uniscribe font processing out-of-bounds memory read vulnerability in USP10!SubstituteNtoM.
21501fb23f355d1b0e564c293e343a44Microsoft Windows suffers from a Uniscribe font processing out-of-bounds memory read vulnerability in USP10!ttoGetTableData.
9c1160bfd758cebc60294738c5b23d05Microsoft Windows suffers from a Uniscribe font processing heap-based memory corruption vulnerability in USP10!MergeLigRecords.
78186966da43e6a9f83f25a813a973acThe Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!NtQueryInformationTransaction (information class 1).
ea41d592dbc51283e2d7fd14a478737dThe Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!NtQueryInformationJobObject (information class 28).
12a2f41770434f070786073e16803719The Microsoft Windows kernel suffers from a stack memory disclosure vulnerability in nt!NtQueryInformationJobObject (information class 12).
52f49991622492eff2a2a4681e7b14f5
© 2016 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed