3 matches found
Microsoft Windows Shell LNK Code Execution
This module exploits a vulnerability in the MS10-046 patch to abuse again the handling of Windows Shortcut files .LNK that contain an icon resource pointing to a malicious DLL. This creates an SMB resource to provide the payload and the trigger, and generates a LNK file which must be sent to the...
Microsoft Windows Shell SMB LNK Code Execution
This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 'Microsoft Windows Shell LNK Code Execution', 'Description' = %q This module exploits a vulnerability in the MS10-046 patch to abuse...
[CVE-2012-1621] Apache OFBiz information disclosure vulnerability
CVE-2012-1621: Apache OFBiz information disclosure vulnerability Severity: Important Vendor: The Apache Software Foundation - Apache OFBiz ======Versions Affected====== Apache OFBiz 10.04 also known as 10.04.01 ======Description====== Multiple XSS: XSS 1: Error messages containing user input...