8 matches found
CVE-2013-2551-sample analysis and exploits and Defense-vulnerability warning-the black bar safety net
0x0 is written on the front VUPEN team in the Pwn2Own 2013 hacking contest using the vulnerability to compromise Windows 8 environment, IE10, then on their blog discloses technical details. According to VUPEN description of the vulnerability produced in the VGX. DLL module, in the VML language...
Windows NTUserMessageCall Win32k Kernel Pool Overflow (Schlamperei)
A kernel pool overflow in Win32k which allows local privilege escalation. The kernel shellcode nulls the ACL for the winlogon.exe process a SYSTEM process. This allows any unprivileged process to freely migrate to winlogon.exe, achieving privilege escalation. Used in pwn2own 2013 by MWR to break...
Microsoft Windows - NTUserMessageCall Win32k Kernel Pool Overflow 'schlamperei.x86.dll' (MS13-053) (Metasploit)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/post/windows/reflectivedllinjection' require 'rex' class Metasploit3 'Windows NTUserMessageCall Win32k Kernel Pool Overflow...
Windows NTUserMessageCall Win32k Kernel Pool Overflow (Schlamperei)
This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' require 'msf/core/post/windows/reflectivedllinjection' require 'rex' class Metasploit3 'Windows NTUserMessageCall Win32k Kernel Pool Overflow...
Stable Channel Update
Chrome has been updated to 31.0.1650.57 for Windows, Mac, Linux and Chrome Frame. Security fixes and rewards: Congratulations to Pinkie Pie, for reclaiming his title with another impressive exploit! Ka-po-po-po-pow!!! $50,000 319117 319125 Critical CVE-2013-6632: Multiple memory corruption issues...
MS13-053 Win32k Memory Allocation Vulnerability
win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not properly handle objects in memory, which allows local users to gain...
VUPEN Security Research - Adobe Flash Player RTMP Data Processing Object Confusion (CVE-2013-2555)
VUPEN Security Research - Adobe Flash Player RTMP Data Processing Object Confusion Code Execution CVE-2013-2555 Website : http://www.vupen.com Twitter : http://twitter.com/vupen I. BACKGROUND --------------------- Adobe Flash Player is a cross-platform browser-based application runtime that...
PT-2013-3834 · Microsoft · Internet Explorer
Name of the Vulnerable Software and Affected Versions: Microsoft Internet Explorer version 10 Description: The issue allows remote attackers to execute arbitrary code through unknown vectors, potentially corrupting memory. This was demonstrated during the Pwn2Own competition at CanSecWest 2013...