Lucene search
K

13 matches found

0day.today
0day.today
added 2017/11/09 12:0 a.m.109 views

Microsoft Windows LNK File Code Execution Exploit

This Metasploit module exploits a vulnerability in the handling of Windows Shortcut files .LNK that contain a dynamic icon, loaded from a malicious DLL. This vulnerability is a variant of MS15-020 CVE-2015-0096. The created LNK file is similar except an additional SpecialFolderDataBlock is...

9.3CVSS9.1AI score0.90026EPSS
Exploits27
CERT
CERT
added 2017/08/03 12:0 a.m.839 views

Microsoft Windows automatically executes code specified in shortcut files

Overview Microsoft Windows automatically executes code specified in shortcut LNK files. Description Microsoft Windows supports the use of shortcut or LNK files. A LNK file is a reference to a local file. Clicking on a LNK or file has essentially the same outcome as clicking on the file that is...

9.3CVSS7.5AI score0.90026EPSS
Exploits20References3
exploitpack
exploitpack
added 2017/07/26 12:0 a.m.108 views

Microsoft Windows - .LNK Shortcut File Code Execution (Metasploit)

Microsoft Windows - .LNK Shortcut File Code Execution Metasploit This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LNK Remote Code Execution Vulnerability', 'Description' = %q This module exploits...

9.3CVSS6.6AI score0.90026EPSS
Exploits27
Exploit DB
Exploit DB
added 2017/07/26 12:0 a.m.625 views

Microsoft Windows - '.LNK' Shortcut File Code Execution (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LNK Remote Code Execution Vulnerability', 'Description' = %q This module exploits a vulnerability in the handling of Windows Shortcut files .LNK...

6.7AI score
Exploits0
myhack58
myhack58
added 2015/03/21 12:0 a.m.108 views

[CVE-2 0 1 5-0 0 9 6]Microsoft Windows Shell SMB LNK Code Execution Exploit-vulnerability warning-the black bar safety net

require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::EXE include Msf::Exploit::FILEFORMAT include Msf::Exploit::Remote::SMB::Server::Share attraccessor :exploitdllname def initializeinfo = superupdateinfoinfo, 'Name' = 'Microsoft Windows Shell LN...

9.3CVSS0.6AI score0.71075EPSS
Exploits16
Metasploit
Metasploit
added 2015/03/12 4:46 a.m.61 views

Microsoft Windows Shell LNK Code Execution

This module exploits a vulnerability in the MS10-046 patch to abuse again the handling of Windows Shortcut files .LNK that contain an icon resource pointing to a malicious DLL. This creates an SMB resource to provide the payload and the trigger, and generates a LNK file which must be sent to the...

9.3CVSS7AI score0.71075EPSS
Exploits16
Packet Storm
Packet Storm
added 2015/03/12 12:0 a.m.125 views

Microsoft Windows Shell SMB LNK Code Execution

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Microsoft Windows Shell LNK Code Execution', 'Description' = %q This module exploits a vulnerability in the MS10-046 patch to abuse...

9.3CVSS7AI score0.71075EPSS
Exploits16
0day.today
0day.today
added 2015/03/12 12:0 a.m.178 views

Microsoft Windows Shell SMB LNK Code Execution Exploit

This Metasploit module exploits a vulnerability in the MS10-046 patch to abuse again the handling of Windows Shortcut files .LNK that contain an icon resource pointing to a malicious DLL. This creates an SMB resource to provide the payload and the trigger, and generates a LNK file which must be...

9.3CVSS6.9AI score0.71075EPSS
Exploits16
Metasploit
Metasploit
added 2015/03/11 10:29 p.m.93 views

Microsoft Windows Shell LNK Code Execution

This module exploits a vulnerability in the MS10-046 patch to abuse again the handling of Windows Shortcut files .LNK that contain an icon resource pointing to a malicious DLL. This module creates the required files to exploit the vulnerability. They must be uploaded to an UNC path accessible by...

9.3CVSS6.9AI score0.71075EPSS
Exploits16
canvas
canvas
added 2015/03/11 10:59 a.m.60 views

Immunity Canvas: LNK_EXEC

Name| lnkexec ---|--- CVE| CVE-2015-0096 Exploit Pack| CANVAS Description| lnkexec Notes| References: https://technet.microsoft.com/library/security/ms15-020 CVE Name: CVE-2015-0096 VENDOR: Microsoft NOTES: Tested on: - Windows 7 32bit - Internet Explorer 8 a popup will appear if Protected Mode...

9.3CVSS0.2AI score0.71075EPSS
Exploits16
CVE
CVE
added 2015/03/11 10:0 a.m.179 views

CVE-2015-0096

CVE-2015-0096 is a Windows DLL search-order/shortcut (LNK) loading vulnerability (MS15-020 family). A crafted LNK with dynamic icon and SpecialFolderDataBlock can bypass earlier whitelisting, causing Windows to load a malicious DLL when icons are rendered (e.g., in Explorer), potentially executin...

9.3CVSS6.8AI score0.71075EPSS
Exploits16References3Affected Software9
Symantec
Symantec
added 2015/03/10 12:0 a.m.83 views

Microsoft Windows DLL Loading CVE-2015-0096 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected Avaya CallPilot...

9.3CVSS7.5AI score0.71075EPSS
Exploits16References2Affected Software10
Circl
Circl
added 2010/07/18 12:0 a.m.14 views

CVE-2015-0096

creationtimestamp| type| source ---|---|--- 2010-07-18 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/14403 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/ms15020shortcuticondllloader.rb 2018-05-29...

9.3CVSS6.8AI score0.71075EPSS
Exploits16References3
Rows per page
Query Builder