Microsoft Windows jscript!RegExpComp::Compile Heap Overflow Exploit

There is a heap overflow in jscript.dll when compiling a regex. This issue could potentially be exploited through multiple vectors. Windows: Heap overflow in jscript!RegExpComp::Compile through IE or local network via WPAD CVE-2017-11890 There is a heap overflow in jscript.dll when compiling a...

Microsoft Windows - jscript!RegExpComp::Compile Heap Overflow Through IE or Local Network via WPAD

Microsoft Windows - jscript!RegExpComp::Compile Heap Overflow Through IE or Local Network via WPAD var s = 'a'; forvar i=0;i...

Dashlane Local Privilege Vulnerability

Dashlane is a system security software for the mobile platform from Dashlane Inc. There is a security vulnerability in Dashlane. A local attacker can exploit this vulnerability by placing the WINHTTP.dll file in the %APPDATA%Dashlane directory...

MS12-006: Description of the security update for Webio, Winhttp, and schannel in Windows: January 10, 2012

MS12-006: Description of the security update for Webio, Winhttp, and schannel in Windows: January 10, 2012 INTRODUCTION Microsoft has released security bulletin MS12-006. To view the complete security bulletin, visit one of the following Microsoft websites: Home...

Windows x64 VNC Server (Reflective Injection), Windows x64 Reverse HTTP Stager (winhttp)

Inject a VNC Dll via a reflective loader Windows x64 staged. Tunnel communication over HTTP Windows x64 winhttp This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 745 include...

Windows Meterpreter (Reflective Injection x64), Windows x64 Reverse HTTPS Stager (winhttp)

Inject the meterpreter server DLL via the Reflective Dll Injection payload staged. Requires Windows XP SP2 or newer. Tunnel communication over HTTPS Windows x64 winhttp This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

Windows Meterpreter (Reflective Injection), Windows Reverse HTTPS Stager (winhttp)

Inject the Meterpreter server DLL via the Reflective Dll Injection payload staged. Requires Windows XP SP2 or newer. Tunnel communication over HTTPS Windows winhttp This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework modu...

Reflective DLL Injection, Windows Reverse HTTP Stager (winhttp)

Inject a DLL via a reflective loader. Tunnel communication over HTTP Windows winhttp This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 533 include Msf::Payload::Stager include...

Windows Meterpreter (Reflective Injection), Windows Reverse HTTP Stager (winhttp)

Inject the Meterpreter server DLL via the Reflective Dll Injection payload staged. Requires Windows XP SP2 or newer. Tunnel communication over HTTP Windows winhttp This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework modul...

VNC Server (Reflective Injection), Windows Reverse HTTP Stager (winhttp)

Inject a VNC Dll via a reflective loader staged. Tunnel communication over HTTP Windows winhttp This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework module MetasploitModule CachedSize = 533 include Msf::Payload::Stager...

Microsoft Telnet and WinHTTP Multiple Services Denial of Service

Multiple Denial of Service DoS vulnerabilities have been reported in Microsoft Windows Telnet and WinHTTP. Remote attackers can trigger these vulnerabilities by sending specially crafted malicious requests to the affected services. The vulnerabilities are due to a design flaw in Microsoft Telnet'...

Microsoft WinHTTP服务证书验证漏洞（MS09-013）

BUGTRAQ ID: 34437 CVECAN ID: CVE-2009-0089 Microsoft Windows是微软发布的非常流行的操作系统。 当应用程序调用Windows HTTP服务与远程Web服务器创建连接时，WinHTTP仅对主机试图连接的原始站点的证书验证URL是否为完全合格的域名，特定的DNS欺骗攻击可能将连接转发到拥有该特定主机有效证书但不是WinHTTP初始化连接所到页面有效证书的不同Web服务器上，这可能导致WinHTTP错误的认为远程 Web服务器的证书为可接受。由于WinHTTP的用户交互依赖于应用程序，因此用户可能不会得到上述差异的警告。 Microso...

Microsoft Windows WinHTTP服务整数下溢漏洞（MS09-013）

BUGTRAQ ID: 34435 CVECAN ID: CVE-2009-0086 Microsoft Windows是微软发布的非常流行的操作系统。 Windows HTTP服务处理远程Web服务器所返回的特定值的方式存在整数下溢漏洞。如果用户受骗访问了恶意服务器的话，就可以触发这个溢出，导致在用户机器上执行任意代码。 Microsoft Windows XP x64 SP2 Microsoft Windows XP x64 Microsoft Windows XP SP3 Microsoft Windows XP SP2 Microsoft Windows Vista SP1...

Design/Logic Flaw

Windows HTTP Services aka WinHTTP in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008; and WinINet in Microsoft Internet Explorer 5.01 SP4, 6 SP1, 6 and 7 on Windows XP SP2 and SP3, 6 and 7 on Windows Server 2003 SP1 and SP2, 7 on Windows...

CVE-2009-0550

Windows HTTP Services aka WinHTTP in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008; and WinINet in Microsoft Internet Explorer 5.01 SP4, 6 SP1, 6 and 7 on Windows XP SP2 and SP3, 6 and 7 on Windows Server 2003 SP1 and SP2, 7 on Windows...

CVE-2009-0089

CVE-2009-0089 describes a vulnerability in Windows HTTP Services (WinHTTP) where remote servers could impersonate HTTPS sites via DNS spoofing and forward a connection to a host with a valid certificate for a different domain. Affected: Windows 2000 SP4, XP SP2/SP3, Server 2003 SP1/SP2, and Vista...

CVE-2009-0086

CVE-2009-0086 describes an integer underflow in Windows HTTP Services (WinHTTP) that allows remote code execution when a remote server sends crafted values in a response. The vulnerability affects multiple Windows versions, including Windows 2000 SP4, XP SP2/SP3, Server 2003 SP1/SP2, Vista (Gold/...

Protection against Microsoft Windows HTTP Services Certificate Name Mismatch Remote Code Execution Vulnerability (MS09-013)

A spoofing vulnerability has been reported in Microsoft Windows HTTP Services. Windows HTTP Services WinHTTP provides developers with an HTTP client application programming interface API to send requests through the HTTP protocol to other HTTP servers. A remote attacker may exploit this issue to...

Microsoft WinHTTP Integer Underflow Memory Corruption Remote Code Execution Vulnerability

Description Microsoft Windows HTTP Services WinHTTP is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the application. Successful exploits will compromise an affected application and possibly the...

Microsoft WinHTTP Server Name Mismatch Certificate Validation Security Bypass Vulnerability

Description Microsoft Windows HTTP Services WinHTTP is prone to a security-bypass vulnerability because of an error in verifying website certificates. Successfully exploiting this issue allows attackers to perform man-in-the-middle attacks or impersonate trusted servers, which will aid in further...