Immunity Canvas: EMACS_ENRICHED

Name| emacsenriched ---|--- CVE| CVE-2017-14482 Exploit Pack| CANVAS Description| Emacs Enriched Mime-type Handler Arbitrary ELISP Execution Notes| CVE Name: CVE-2017-14482 VENDOR: https://www.gnu.org/software/emacs/ Notes: Either email this to someone using the GNUS email client or convince them...

Immunity Canvas: OFFICE_WSDL

Name| officewsdl ---|--- CVE| CVE-2017-8759, CVE-2017-8570 Exploit Pack| CANVAS Description| Microsoft Office Moniker/WSDL C Injection Notes| CVE Name: CVE-2017-8759, CVE-2017-8570 VENDOR: https://office.com Notes: Send the resulting document to someone and have them open it. If the target is...

Immunity Canvas: CISCO_SNMP_OID

Name| ciscosnmpoid ---|--- CVE| CVE-2016-6366 Exploit Pack| CANVAS Description| CISCO SNMP OID mem corruption Notes| Repeatability: Multiple Times Notes: python exploits/remote/cisco/ciscosnmpoid/ciscosnmpoid.py -t ip -p port -O community:community -O version:0/1 0 = disable password auth 1 =...

Immunity Canvas: MS15_100

Name| ms15100 ---|--- CVE| CVE-2015-2509 Exploit Pack| CANVAS Description| ms15100 Notes| References: https://technet.microsoft.com/library/security/ms15-100 CVE Name: CVE-2015-2509 VENDOR: Microsoft NOTES: Tested on: Windows 7 SP132 bits Windows 7 SP164 bits Use port 80 as the server port Window...

Immunity Canvas: ADOBE_FLASH_VALUEOF

Name| adobeflashvalueof ---|--- CVE| CVE-2015-5119 Exploit Pack| CANVAS Description| adobeflashvalueof Notes| CVE Name: CVE-2015-5119 VENDOR: Adobe Notes: Tested on: - Windows 7 x86/x64 IE32/64 8, 9, 11 This module exploits a use after free vulnerability on Adobe Flash Player. When you have a...

Immunity Canvas: CVE_2014_5460

Name| CVE20145460 ---|--- CVE| CVE-2014-5460 Exploit Pack| CANVAS Description| CVE-2014-5460 Notes| CVE Name: CVE-2014-5460 VENDOR: Tribulant Changelog: https://wordpress.org/plugins/slideshow-gallery/changelog/ Notes: If the Suhosin-Patch is installed typically announced in the PHP banner the...

Immunity Canvas: ADOBE_FLASH_COPYPIXELSTOBYTEARRAY

Name| adobeflashcopypixelstobytearray ---|--- CVE| CVE-2014-0556 Exploit Pack| CANVAS Description| adobeflashcopypixelstobytearray Notes| CVE Name: CVE-2014-0556 VENDOR: Adobe Notes: This module exploits a heap based buffer overflow on Adobe Flash Player when copying data from a BitmapData object...

Immunity Canvas: MS10_059

Name| ms10059 ---|--- CVE| CVE-2010-2554 Exploit Pack| CANVAS Description| ms10059 Notes| References: http://www.microsoft.com/technet/security/bulletin/MS10-059.mspx CVE Name: CVE-2010-2554 VENDOR: Microsoft Notes: This exploit gain SYSTEM from NETWORKSERVICE or DefaultAppPool user by duplicatin...

Immunity Canvas: JBOSS_JMXCONSOLE_DEPLOYER

Name| jbossjmxconsoledeployer ---|--- CVE| CVE-2010-0738 Exploit Pack| CANVAS Description| jbossjmxconsoledeployer Notes| CVE Name: CVE-2010-0738 VENDOR: Red Hat Notes: JBoss Web JMX Console exposes services that can be used to deploy a new application. This exploit will try to deploy an...

Immunity Canvas: FCKEDITOR

Name| FCKEditor ---|--- CVE| CVE-2009-2265 Exploit Pack| CANVAS Description| FCKEditor Notes| CVE Name: CVE-2009-2265 VENDOR: Known Vunlerable Versions: 'ColdFusion MX 8 - 8.01', 'osCMax =2.0', 'RunCMS =1.3a', 'Falt4 CMS', 'Many more to come!' Notes: This exploit has two different variants - one...

Immunity Canvas: JAVA_DESERIALIZE_WIN32

Name| javadeserializewin32 ---|--- CVE| CVE-2008-5353 Exploit Pack| CANVAS Description| Java ZoneInfo deserialize exploit HTTP MOSDEF WIN32 Notes| CVE Name: CVE-2008-5353 VENDOR: Sun Repeatability: Infinite client side - no crash References:...

Immunity Canvas: BRIGHTSTOR_CMDEXEC

Name| brightstorcmdexec ---|--- CVE| CVE-2008-4397 Exploit Pack| CANVAS Description| brightstorcmdexec Notes| CVE Name: CVE-2008-4397 VENDOR: Computer Associates Notes: This exploit will start a TFTP server which is why it requires root and have the remote side download and execute a MOSDEF...