Lucene search
K

15 matches found

Nuclei
Nuclei
added 2026/06/16 7:13 a.m.909 views

Microsoft Windows 'HTTP.sys' - Remote Code Execution

HTTP.sys in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to execute arbitrary code via crafted HTTP requests, aka "HTTP.sys Remote Code Execution Vulnerability." id: CVE-2015-1635 info: name: Microsoft...

10CVSS9.1AI score0.99999EPSS
Exploits16References5
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.190 views

MS15-034 HTTP Protocol Stack Request Handling Denial-of-Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS15-034 HTTP Protocol Stack Request Handling Denial-of-Service', 'Description' = %q This module will check if scanned hosts are vulnerable to...

10CVSS7AI score0.99999EPSS
Exploits16
Hacker One
Hacker One
added 2018/12/18 7:13 p.m.124 views

U.S. Dept Of Defense: [Urgent] Critical Vulnerability [RCE] on ███ vulnerable to Remote Code Execution by exploiting MS15-034, CVE-2015-1635

@ashutosh7 found a ███████ server in Shodan, vulnerable to MS15-034, confirmed using Metasploit. Thanks for participating in the DoD VDP. Found a ████ server in shodan, vulnerable to MS15-034. confirmed using Metasploit. will add the link for the writeup...

10CVSS8.8AI score0.99999EPSS
Exploits16
GithubExploit
GithubExploit
added 2018/06/20 2:28 p.m.69 views

Exploit for Code Injection in Microsoft

Place the detected IP...

10CVSS7.3AI score0.99999EPSS
Exploits16
Circl
Circl
added 2018/05/29 3:50 p.m.11 views

CVE-2015-1635

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/http/ms15034ulonglongadd.rb 2018-05-29 15:50:33+00:00| seen|...

10CVSS7.3AI score0.99999EPSS
Exploits16References9
myhack58
myhack58
added 2016/10/17 12:0 a.m.41 views

MS15-0 3 4 IIS 7.0 HTTP.sys a remote code execution vulnerability(CVE-2 0 1 5-1 6 3 5) POC-vulnerability warning-the black bar safety net

Detection script: Python----beebeeto http://www.beebeeto.com/pdb/poc-2015-0081/ !/ usr/bin/env python coding=utf-8 """ Site: http://www.beebeeto.com/ Framework: https://github.com/n0tr00t/Beebeeto-framework """ import socket import random import urlparse from baseframe import BaseFrame class...

1.8AI score
Exploits0
myhack58
myhack58
added 2015/04/17 12:0 a.m.22 views

HTTP.sys a remote code execution vulnerability, CVE-2 0 1 5-1 6 3 5-the vulnerability warning-the black bar safety net

In Microsoft 4 on 1 4, patch released the patch, there is one for the IIS server remote code execution vulnerability hazard is very large, please the majority of users attention. Vulnerability information A remote code execution vulnerability exists in the HTTP Protocol stack HTTP.sys, when the...

1.7AI score
Exploits0
myhack58
myhack58
added 2015/04/16 12:0 a.m.93 views

IIS the latest high-risk Vulnerability, CVE-2 0 1 5-1 6 3 5, AND MS15-0 3 4. THE POC and online detection of source-vulnerability warning-the black bar safety net

! HTTP. sys remote code execution vulnerability, CVE-2 0 1 5-1 6 3 5, AND MS15-0 3 4. the A remote code execution vulnerability exists in the HTTP Protocol stack HTTP.sys, when the HTTP.sys not correct parsing specially crafted HTTP request to cause this vulnerability. Successful exploitation of...

10CVSS0.3AI score0.99999EPSS
Exploits16
myhack58
myhack58
added 2015/04/16 12:0 a.m.27 views

IIS the latest high-risk Vulnerability, CVE-2 0 1 5-1 6 3 5, AND MS15-0 3 4 analysis-vulnerability warning-the black bar safety net

Foreword In 4 month's patch day, Microsoft by marking“high-risk”MS15-0 3 4 patch fix HTTP. SYS a remote code Vulnerability, CVE-2 0 1 5-1 6 3 5 It. According to Microsoft Bulletin https://technet.microsoft.com/en-us/library/security/MS15-034 the call, when the vulnerability exists in the HTTP...

7.9AI score
Exploits0
myhack58
myhack58
added 2015/04/16 12:0 a.m.93 views

MS15-0 3 4/CVE-2 0 1 5-1 6 3 5 HTTP remote code execution vulnerability analysis-vulnerability warning-the black bar safety net

! /Article/UploadPic/2015-4/2 0 1 5 4 1 6 1 0 4 9 1 9 2 1 8. png Foreword In 4 month's patch day, Microsoft by marking“high-risk”MS15-0 3 4 patch fix HTTP. SYS a remote code Vulnerability, CVE-2 0 1 5-1 6 3 5 It. According to Microsoft Bulletinthe call, when the vulnerability exists in the HTTP...

7.9AI score
Exploits0
Metasploit
Metasploit
added 2015/04/15 6:13 p.m.97 views

MS15-034 HTTP Protocol Stack Request Handling Denial-of-Service

This module will check if scanned hosts are vulnerable to CVE-2015-1635 MS15-034, a vulnerability in the HTTP protocol stack HTTP.sys that could result in arbitrary code execution. This module will try to cause a denial-of-service. This module requires Metasploit: https://metasploit.com/download...

9.8CVSS9.4AI score0.99999EPSS
Exploits16
Exploit DB
Exploit DB
added 2015/04/15 12:0 a.m.119 views

Microsoft Windows - 'HTTP.sys' (PoC) (MS15-034)

/ UNTESTED - MS15-034 Checker THE BUG: 8a8b2112 56 push esi 8a8b2113 6a00 push 0 8a8b2115 2bc7 sub eax,edi 8a8b2117 6a01 push 1 8a8b2119 1bca sbb ecx,edx 8a8b211b 51 push ecx 8a8b211c 50 push eax 8a8b211d e8bf69fbff call HTTP!RtlULongLongAdd 8a868ae1 ; here ORIGNAL POC:...

7.4AI score
Exploits0
Vulnrichment
Vulnrichment
added 2015/04/14 8:0 p.m.14 views

CVE-2015-1635

HTTP.sys in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, and Windows Server 2012 Gold and R2 allows remote attackers to execute arbitrary code via crafted HTTP requests, aka "HTTP.sys Remote Code Execution Vulnerability."...

9.8AI score0.99999EPSS
Exploits16References7
CVE
CVE
added 2015/04/14 8:0 p.m.1502 views

CVE-2015-1635

CVE-2015-1635 (HTTP.sys RCE) affects Microsoft Windows HTTP.sys on Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold/R2. The vulnerability enables remote code execution via crafted HTTP requests, caused by improper parsing in HTTP.sys. Public references i...

10CVSS9.6AI score0.99999EPSS
In wildExploits16References8Affected Software5
Check Point Advisories
Check Point Advisories
added 2015/04/14 12:0 a.m.14 views

Microsoft Windows HTTP.sys Remote Code Execution (MS15-034: CVE-2015-1635)

A remote code execution vulnerability has been reported in Windows OS. The vulnerability is due to an error in the way HTTP.sys handles a malicious HTTP header. Successful exploitation would result in a remote code execution...

10CVSS1.6AI score0.99999EPSS
Exploits16
Rows per page
Query Builder