Lucene search
K

17 matches found

Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.498 views

MS17-010 EternalRomance/EternalSynergy/EternalChampion SMB Remote Windows Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS17-010 EternalRomance/EternalSynergy/EternalChampion SMB Remote Windows Command Execution', 'Description' = %q This module will exploit SMB wit...

9.3CVSS7.4AI score0.99693EPSS
Exploits52
Gitee
Gitee
added 2020/04/26 9:31 a.m.3 views

MS17-010

This repository is for public analysis of the MS17-010 vulnerability. The repository contains various scripts and exploits for demonstrating the vulnerability, including EternalBlue, Eternalchampion, and Eternalromance. The exploits are designed to target Windows systems and can be used to gain...

7.2AI score
Exploits0
Exploit DB
Exploit DB
added 2018/02/05 12:0 a.m.303 views

Microsoft Windows - 'EternalRomance'/'EternalSynergy'/'EternalChampion' SMB Remote Code Execution (Metasploit) (MS17-010)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Windows XP systems that are not part of a domain default to treating all network logons as if they were Guest. This prevents SMB relay attacks from gaining administrativ...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2018/02/03 12:0 a.m.312 views

MS17-010 EternalRomance / EternalSynergy / EternalChampion SMB Remote Windows Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework Windows XP systems that are not part of a domain default to treating all network logons as if they were Guest. This prevents SMB relay attacks from gaining administrativ...

9.3CVSS7.2AI score0.99693EPSS
Exploits52
Metasploit
Metasploit
added 2018/01/29 1:13 a.m.79 views

MS17-010 EternalRomance/EternalSynergy/EternalChampion SMB Remote Windows Command Execution

This module will exploit SMB with vulnerabilities in MS17-010 to achieve a write-what-where primitive. This will then be used to overwrite the connection session information with as an Administrator session. From there, the normal psexec command execution is done. Exploits a type confusion betwee...

8.8CVSS7.1AI score0.99693EPSS
Exploits52
MSRC
MSRC
added 2017/07/20 7:0 a.m.17 views

EnglishmansDentist Exploit Analysis

Introduction Introduction We are continuing our series of blog posts dissecting the exploits released by ShadowBrokers in April 2017. After the first two posts about the SMB exploits known as EternalChampion and EternalSynergy, we’ll move this time to analyze a different tool and we’ll focus on t...

3.4AI score
Exploits0
MSRC
MSRC
added 2017/06/29 7:0 a.m.8 views

Eternal Champion Exploit Analysis

Recently, a group named the ShadowBrokers published several remote server exploits targeting various protocols on older versions of Windows. In this post we are going to look at the EternalChampion exploit in detail to see what vulnerabilities it exploited, how it exploited them, and how the late...

7AI score
Exploits0
myhack58
myhack58
added 2017/06/19 12:0 a.m.21 views

NSA Arsenal of Eclipsedwing reproduce-bug warning-the black bar safety net

Blurbs From the shadow Brokers published the NSA leaks tool, and the brightest great God continually published leaked tool various exp reproduction process, and WannaCry, the EternalRocks ransomware virus is raging, no one do not exhibit leakage of the tools of power, but the leaks tool in light...

7AI score
Exploits0
rapid7community
rapid7community
added 2017/05/24 11:14 p.m.343 views

Vulnerability Management Tips for the Shadow Brokers Leaked Exploits

Rebekah Brown and the Rapid7 team have delivered a spot-on breakdown of the recent Shadow Brokers exploit and tool release. Before you read any further, if you havent done so already, please read her post. Its probably not the only post youve read on this topic, but it is cogent, well-constructed...

9.3CVSS7.3AI score0.99693EPSS
Exploits93
Check Point Advisories
Check Point Advisories
added 2017/05/21 12:0 a.m.1 views

Microsoft Windows Eternalchampion SMB Remote Code Execution

A remote code execution vulnerability exist in Microsoft Server Message Block SMB. The vulnerability is due to the way SMB service handles certain requests. The Fuzzbunch tool allows attackers to execute this exploit. An attacker who successfully exploits this vulnerability can execute arbitrary...

5.4AI score
Exploits0
ThreatPost
ThreatPost
added 2017/04/24 3:31 p.m.10 views

NSA's DoublePulsar Kernel Exploit In Use Internet-Wide

If you’re on a red team or have been on the receiving end of a pen-test report from one, then you’ve almost certainly encountered reports of Windows servers vulnerable to Conficker MS08-067, which has been in the wild now for nearly 10 years since the bug was patched. A little more than two weeks...

0.9AI score
Exploits0References8
ThreatPost
ThreatPost
added 2017/04/17 2:6 p.m.116 views

ShadowBrokers' Windows Zero-Days Already Patched

Hours after what was thought to be a damaging release of NSA hacking tools for Windows systems, Microsoft quelled some anxiety with a late-night statement on Friday that most of the vulnerabilities disclosed by the ShadowBrokers had already been patched. The biggest surprise was that the most...

9.3CVSS8.3AI score0.99945EPSS
Exploits61References6
seebug.org
seebug.org
added 2017/04/17 12:0 a.m.379 views

EternalChampion - Windows SMB Remote Code Execution Vulnerability (CVE-2017-0146)

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 1.0 SMBv1 server handles certain requests. An attacker who successfully exploited the vulnerability could gain the ability to execute code on the target server. To exploit the vulnerability, in most...

9.3CVSS8.4AI score0.89862EPSS
Exploits27
myhack58
myhack58
added 2017/04/15 12:0 a.m.60 views

Equation and a wave of massive 0day attacks leaks, Microsoft this minor vaginal bleeding-exploit warning-the black bar safety net

Early in the morning get up and think of Sunny days still good? However cyberspace just gave birth to a wave of bomb has a blast! Shadow Brokers again leaked out a shocked the world of confidential documents, which contains a plurality of fine Windows Remote exploit tools, and can cover over 70% ...

0.8AI score
Exploits0
The Hacker News
The Hacker News
added 2017/04/14 9:17 p.m.10 views

Turns Out Microsoft Has Already Patched Exploits Leaked By Shadow Brokers

The latest dump of hacking tools allegedly belonged to the NSA is believed to be the most damaging release by the Shadow Brokers till the date. But after analyzing the disclosed exploits, Microsoft security team says most of the windows vulnerabilities exploited by these hacking tools, including...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/03/20 12:0 a.m.8248 views

MS17-010: Security Update for Microsoft Windows SMB Server (4013389) (ETERNALBLUE) (ETERNALCHAMPION) (ETERNALROMANCE) (ETERNALSYNERGY) (WannaCry) (EternalRocks) (Petya) (uncredentialed check)

The remote Windows host is affected by the following vulnerabilities : - Multiple remote code execution vulnerabilities exist in Microsoft Server Message Block 1.0 SMBv1 due to improper handling of certain requests. An unauthenticated, remote attacker can exploit these vulnerabilities, via a...

9.3CVSS7.9AI score0.99933EPSS
Exploits122References17
Tenable Nessus
Tenable Nessus
added 2017/03/15 12:0 a.m.4463 views

MS17-010: Security Update for Microsoft Windows SMB Server (4013389) (ETERNALBLUE) (ETERNALCHAMPION) (ETERNALROMANCE) (ETERNALSYNERGY) (WannaCry) (EternalRocks) (Petya)

The remote Windows host is missing a security update. It is, therefore, affected by the following vulnerabilities : - Multiple remote code execution vulnerabilities exist in Microsoft Server Message Block 1.0 SMBv1 due to improper handling of certain requests. An unauthenticated, remote attacker...

9.3CVSS8AI score0.99933EPSS
Exploits122References12
Rows per page
Query Builder