Posted by scriptjunkie in Exploits, Metasploit on June 28, 2011
[I found some old posts lurking around my hard drive from a few months ago. This is no longer the newest or best Firefox exploit, but you might find it interesting] To learn a little bit more about exploit development and RE I took a look at the latest Firefox exploit in exploit-db ( http://www.exploit-db.com/exploits/15352/); […]
ASLR, DEP, dll, exploit, exploit-db, firefox, Metasploit, Nobel, Peace Prize, retslide, reverse engineering, rop, stack pivot
Posted by scriptjunkie in Exploits on March 1, 2011
As the recent exploits for IE using the .NET 2.0 DLL demonstrate, sometimes a non-ASLR DLL to enable an exploit is just a LoadLibrary away. So if pvefindaddr won’t give you any ASLR-free DLL’s in memory, look for other DLL’s which the process will load, given the right input. Or from a system-hardening or development […]
ASLR, DEP, DYNAMIC_BASE, EMET, exploit, find, NX_COMPAT, pefinder
Posted by scriptjunkie in Exploits, Metasploit on September 27, 2010
Update: these command stagers have been integrated into metasploit Command injection/execution bugs are a relatively common vulnerability. For example, Internet Explorer, Google Chrome, and Mozilla Firefox have all had these problems, at least including common add-ons. (see http://www.securityfocus.com/archive/1/archive/1/499570/100/0/threaded, http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2007-5045, etc.) Many server-side scripts in webapps also suffer from the same issues. Against a Linux target, […]
CMD, command, exploit, Metasploit, stager, vbs, vbscript, windows
Fusion theme by digitalnature | powered by WordPress
Entries (RSS) and Comments (RSS) ^