5 matches found
Malicious Package
Overview testpipper is a malicious package. This is one of 12 malicious packages created by the same actor and discovered by Snyk. It downloads and executes malicious exe files containing malicious code that attempts to steal information from Google Chrome, tokens from Discord, and Injects a...
Windows Executable Download and Execute (via .vbs)
Download an EXE from an HTTPS URL and execute it This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = :dynamic include Msf::Payload::Single include Msf::Sessions::CommandShellOptions de...
Proviso SiteKiosk File Download Vulnerability
Proviso SiteKiosk File Download Vulnerability x Vendor Information: "SiteKiosk is a software for public access internet terminals and lets you turn any computer into a secure multilanguage Internet terminal already 20 different languages included, allowing the user to access the Internet but...
playing for fun with <=IE7
playing for fun with =IE7 Impact: who knows ... Fix Available: no ------------------------------------------------------- 1 Bug 2 Proof of concept 3Conclusion ====== 1 Bug ====== it's possible to bypass the extension filter of =IE7 this can result by downloading an arbitrary exe file ===== 2proof...
MHTML Redirection Leads to Downloading EXE and Executing
MHTML Redirection Leads to Downloading EXE and Executing tested OS:Win2k3,CN version IE: with MS03-048 installed. OS:WinXp, CN version Microsoft Internet Explorer v6.Sp1; up-to-date on 2003/11/16 overview A vulnerability in Internet Explorer is found: any attacker that can reach MYCOMPUTER securi...