5 matches found
LeakedHandlesFinder - Leaked Windows Processes Handles Identification Tool
Leaked Windows processes handles identification tool. Useful for identify new LPE vulnerabilities during a pentest or simply as a new research process. Currently supports exploiting autopwn procesess leaked handles spawning a new arbitrary process cmd.exe default. LHF identifies in realtime...
WhatsApp < v2.11.7 - Remote Crash
Exploit for multiple platform in category dos / poc !/usr/bin/python -- coding: utf-8 - Title: WhatsApp Remote Crash on non-printable characters Product: WhatsApp Vendor Homepage: http://www.whatsapp.com Vulnerable Versions: 2.11.7 and prior on iOS Tested on: WhatsApp v2.11.7 on iPhone 5 running...
WhatsApp < 2.11.7 - Remote Crash
!/usr/bin/python -- coding: utf-8 - Title: WhatsApp Remote Crash on non-printable characters Product: WhatsApp Vendor Homepage: http://www.whatsapp.com Vulnerable Versions: 2.11.7 and prior on iOS Tested on: WhatsApp v2.11.7 on iPhone 5 running iOS 7.0.4 Solution Status: Fixed by Vendor on v2.11....
SCADA Trojans: Attacking the Grid + Advantech vulnerabilities
Hi! You can download the slides of the research I was presenting at RootedCon'11 in Madrid "SCADA Trojans: Attacking the grid". A journey into attacking the power grid. I presented: - 0days in Advantech/BroadWin WebAccess SCADA product - Weak Design/Vulnerabilities in CSE-Semaphore TBOX RTUs -...
Oracle Financials R12 SQL Injection
Hi all, Yesterday a friend of mine told me that I "forget" to share with the general public one small detail about a presentation 1 I given at the conference RootedCon 2010 2. In the presentation there is a currently working 0day against Oracle Financials R12. The 0day is too obvious and pretty...