619 matches found
Immunity Canvas: EXIM_EXPANSION_RCE
Name| eximexpansionrce ---|--- CVE| CVE-2019-10149 Exploit Pack| CANVAS Description| eximexpansionrce Notes| CVE Name: CVE-2019-10149 VENDOR: Exim NOTES: A vulnerability exists in Exim since version 4.85 that allows for the execution of remote commands as the root user on a system. Current versio...
Immunity Canvas: EMACS_ENRICHED
Name| emacsenriched ---|--- CVE| CVE-2017-14482 Exploit Pack| CANVAS Description| Emacs Enriched Mime-type Handler Arbitrary ELISP Execution Notes| CVE Name: CVE-2017-14482 VENDOR: https://www.gnu.org/software/emacs/ Notes: Either email this to someone using the GNUS email client or convince them...
Immunity Canvas: VREALIZE_VCOFACTORY_DESERIALIZE
Name| vrealizevcofactorydeserialize ---|--- CVE| CVE-2015-6934 Exploit Pack| CANVAS Description| vrealizevcofactorydeserialize Notes| CVE Name: CVE-2015-6934 VENDOR: VMWare NOTES: IMPORTANT NOTE: Any instance of this application running Apache Commons Collections version prior to 3.0 WILL NOT WOR...
Immunity Canvas: JENKINS_CLI_DESERIALIZATION
Name| jenkinsclideserialization ---|--- CVE| CVE-2015-8103 Exploit Pack| CANVAS Description| jenkinsclideserialization Notes| CVE Name: CVE-2015-8103 VENDOR: Jenkins NOTES: IMPORTANT NOTE: Any instance of this application running Apache Commons Collections version prior to 3.0 WILL NOT WORK...
Immunity Canvas: OSX_RSH_LIBMALLOC
Name| osxrshlibmalloc ---|--- CVE| CVE-2015-5889 Exploit Pack| CANVAS Description| OS X rsh/libmalloc local privilege escalation Notes| Repeatability: Multiple Times Notes: Exploit should work on many different versions of MacOS X 64bit, but it has been specifically tested on: - 10.10.3 - 10.10.1...
Immunity Canvas: OVERLAYFS_SETATTR
Name| overlayfssetattr ---|--- CVE| CVE-2015-8660 Exploit Pack| CANVAS Description| Ubuntu Overlayfs setattr local privilege escalation Notes| Repeatability: Multiple Times Notes: This is a local privilege escalation affecting kernels lower than 4.3.3. Tested on: - Ubuntu 15.10 VENDOR: Ubuntu CVE...
Immunity Canvas: VBULLETIN_PREAUTH_DECODEARGUMENTS
Name| vbulletinpreauthdecodeArguments ---|--- CVE| CVE-2015-7808 Exploit Pack| CANVAS Description| vBulletin pre-auth remote code execution Notes| CVE Name: CVE-2015-7808 VENDOR: vBulletin Solutions NOTES: Tested on Ubuntu 14.04 against: - vBulletin 5.1.4 - vBulletin 5.0.4 Repeatability: Infinite...
Immunity Canvas: APPORT_CRASH_HANDLER
Name| apportcrashhandler ---|--- CVE| CVE-2016-9949 Exploit Pack| CANVAS Description| Ubuntu Apport Crash Handler RCE Notes| CVE Name: CVE-2016-9949 Vendor: Ubuntu Notes: This module creates a crafted Apport crash file report that seems to be a simple text file. When the text file is double click...
Immunity Canvas: CVE_2016_1757
Name| CVE20161757 ---|--- CVE| CVE-2016-1757 Exploit Pack| CANVAS Description| Shellelevate: CVE-2016-1757 Notes| Repeatability: Multiple Times NOTES: VENDOR: Apple CVE Url: https://vulners.com/cve/CVE-2016-1757 CVE Name: CVE-2016-1757...
Immunity Canvas: FCKEDITOR
Name| FCKEditor ---|--- CVE| CVE-2009-2265 Exploit Pack| CANVAS Description| FCKEditor Notes| CVE Name: CVE-2009-2265 VENDOR: Known Vunlerable Versions: 'ColdFusion MX 8 - 8.01', 'osCMax =2.0', 'RunCMS =1.3a', 'Falt4 CMS', 'Many more to come!' Notes: This exploit has two different variants - one...
Immunity Canvas: IISFTP_NLST
Name| iisftpnlst ---|--- CVE| CVE-2009-3023 Exploit Pack| CANVAS Description| IISFTPNLST Notes| CVE Name: CVE-2009-3023 VENDOR: Microsoft References: http://lists.grok.org.uk/pipermail/full-disclosure/2009-August/070467.html CVE Url: https://vulners.com/cve/CVE-2009-3023 Date public: 08/31/09 CVS...
Immunity Canvas: ZABBIX
Name| zabbix ---|--- CVE| CVE-2013-3628 Exploit Pack| CANVAS Description| Zabbix = 2.0.8 PHP File inclusion exploit Notes| Repeatability: Infinite VENDOR: Zabbix CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2013-3628 CVE Name: CVE-2013-3628...
Immunity Canvas: NGINX
Name| nginx ---|--- CVE| CVE-2009-2629 Exploit Pack| CANVAS Description| Jinx Notes| CVE Name: CVE-2009-2629 VENDOR: nginx Notes: Use -O execshield:0 against Ubuntu targets - the default is to assume you want execshield avoidance. Repeatability: Infinite References:...
Immunity Canvas: BLUEKEEP
Name| BLUEKEEP ---|--- CVE| CVE-2019-0708 Exploit Pack| CANVAS Description| BLUEKEEP - Remote command execution RDP Notes| CVE Name: CVE-2019-0708 VENDOR: Microsoft NOTES: -- IMPORTANT -- The module is currently in beta stage. If you do not select "Allow remote code execution" from the module's...
Immunity Canvas: MS08_062
Name| ms08062 ---|--- CVE| CVE-2008-1446 Exploit Pack| CANVAS Description| Windows Internet Printing Service Overflow Notes| CVE Name: CVE-2008-1446 VENDOR: Microsoft Notes: This exploit will try and listen for connection on port 445/TCP. Thus it needs to be run as root under Linux, or as...
Immunity Canvas: SETWINDOWFNID_LPE
Name| setwindowfnidlpe ---|--- CVE| CVE-2018-8453 Exploit Pack| CANVAS Description| SetWindowFNID LPE Notes| CVE Name: CVE-2018-8453 Notes: Tested: - Windows 10 x64 1703 - Windows 10 x64 1709 VENDOR: Microsoft CVE Url: https://nvd.nist.gov/vuln/detail/CVE-2018-8453 CVSS: 7.8...
Immunity Canvas: SYSRET
Name| SYSRET ---|--- CVE| CVE-2012-0217 Exploit Pack| CANVAS Description| SYSRET: exploit for invalid GP @ CPL0 handling FreeBSD AMD64 version Notes| CVE Name: CVE-2012-0217 VENDOR: Intel,FreeBSD Notes: Tested on FreeBSD 9.0-RC3 and FreeBSD 9.0-RELEASE AMD64 To test this exploit from CANVAS use t...
Immunity Canvas: MS12_027
Name| ms12027 ---|--- CVE| CVE-2012-0158 Exploit Pack| CANVAS Description| MS12-027 MSCOMCTL.OCX ActiveX Buffer Overflow Notes| CVE Name: CVE-2012-0158 VENDOR: Microsoft Notes: You shoud manually start a Universal listener for this exploit. The listener IP and PORT should be declared in the modul...
Immunity Canvas: SMBGHOST_LPE
Name| smbghostlpe ---|--- CVE| CVE-2020-0796 Exploit Pack| CANVAS Description| smbghostlpe Notes| CVE Name: CVE-2020-0796 Notes: Tested: - Windows 10 1903 x64 - Windows 10 1909 x64 VENDOR: Microsoft CVE Url: https://nvd.nist.gov/vuln/detail/CVE-2020-0796 CVSS: 10.0...
Immunity Canvas: PHP_CGI_REMOTE
Name| phpcgiremote ---|--- CVE| CVE-2012-1823 Exploit Pack| CANVAS Description| phpcgiremote Notes| CVE Name: CVE-2012-1823 VENDOR: www.php.net Notes: Also see: http://www.kb.cert.org/vuls/id/520827 Repeatability: Infinite CVE URL: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-1823 CVS...
Immunity Canvas: MS10_026
Name| ms10026 ---|--- CVE| CVE-2010-0480 Exploit Pack| CANVAS Description| MPEG Layer-3 codecs stack overflow Notes| CVE Name: CVE-2010-0480 VENDOR: Microsoft MSADV: MS10-026 Repeatability: One Shot MSRC: http://www.microsoft.com/technet/security/Bulletin/MS10-026.mspx Note: This is a client-side...
Immunity Canvas: UTORRENT
Name| utorrent ---|--- CVE| CVE-2007-0927 Exploit Pack| CANVAS Description| Utorrent Overflow Notes| CVE Name: CVE-2007-0927 VENDOR: Utorrent NOTES: You can infect your own torrent by providing it one, if none is provided it will create its own. VersionsAffected: Utorrent 1.6 build 474...
Immunity Canvas: VMWARE_DHCPD
Name| vmwaredhcpd ---|--- CVE| CVE-2007-0063 Exploit Pack| CANVAS Description| VMware dhcpd Overflow Notes| CVE Name: CVE-2007-0063 VENDOR: VMWare VersionsAffected: Repeatability: One shot References: http://lists.vmware.com/pipermail/security-announce/2007/000001.html CVE Url:...
Immunity Canvas: XFS_SWAPCHAR2B
Name| xfsswapchar2b ---|--- CVE| CVE-2007-4990 Exploit Pack| CANVAS Description| xfsswapchar2b Notes| CVE Name: CVE-2007-4990 Notes: Repeatability: Infinite References: CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4990 Date public: CVSS: 7.5...
Immunity Canvas: SUDO_TIMESTAMP
Name| sudotimestamp ---|--- CVE| CVE-2013-1775 Exploit Pack| CANVAS Description| sudotimestamp: Linux/MacOS timestamp privilege escalation Notes| CVE Name: CVE-2013-1775 VENDOR: Intel, GNU/Linux, Apple Notes: This exploit runs on GNU/Linux and MacOS X. On both systems this exploit requires: - Use...
Immunity Canvas: WLS_CORE_DESERIALIZATION
Name| wlscoredeserialization ---|--- CVE| CVE-2018-2893 Exploit Pack| CANVAS Description| wlscoredeserialization Notes| CVE Name: CVE-2018-2893 VENDOR: Oracle NOTES: Tested on WebLogic 10.3.6.0 and 12.2.1.2 with JDK 1.7.X. Vulnerability in the Oracle WebLogic Server component of Oracle Fusion...
Immunity Canvas: CF_DIRECTORY_TRAVERSAL
Name| CFdirectorytraversal ---|--- CVE| CVE-2010-2861 Exploit Pack| CANVAS Description| ColdFusion Directory Traversal Notes| CVE Name: CVE-2010-2861 VENDOR: http://www.adobe.com Things to consider: 1 - A remote file i-test10-1.cfm will be left in the webroot as well as the CANVAS callback trojan...
Immunity Canvas: APACHECHUNK_WIN32
Name| apachechunkwin32 ---|--- CVE| CVE-2002-0392 Exploit Pack| CANVAS Description| Apache Chunk win32 Notes| References: http://www.apache.org CVE Name: CVE-2002-0392 VENDOR: Apache Notes: Apache 1.3 through 1.3.24 Repeatability: Multiple tries Date public: 06/17/2002 CERT Advisory:...
Immunity Canvas: REXD
Name| rexd ---|--- CVE| CVE-1999-0627 Exploit Pack| CANVAS Description| rexd Notes| CVE Name: CVE-1999-0627 Notes: Rexd doesn't do any authentication. This is a known problem VENDOR: Unix CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-0627 CVSS: 0.0...
Immunity Canvas: SUNLOGIN
Name| sunlogin ---|--- CVE| CVE-2001-0797 Exploit Pack| CANVAS Description| Sun Login Overflow Notes| References: http://cert.uni-stuttgart.de/archive/bugtraq/2002/10/msg00029.html CVE Name: CVE-2001-0797 VENDOR: Sun Date public: 12/12/2001 CERT Advisory:...
Immunity Canvas: MS14_064_IE_OLEAUT32
Name| ms14064ieoleaut32 ---|--- CVE| CVE-2014-6332 Exploit Pack| CANVAS Description| MS14064 - Windows OLE Automation Array Remote Code Execution Vulnerability Notes| CVE Name: CVE-2014-6332 VENDOR: Microsoft NOTES: References:...
Immunity Canvas: EXIM_HEAP_OVERFLOW
Name| eximheapoverflow ---|--- CVE| CVE-2018-6789 Exploit Pack| CANVAS Description| eximheapoverflow Notes| CVE Name: CVE-2018-6789 VENDOR: Exim NOTES: There is a buffer overflow in the b64decode function, this bug exists since the first commit of exim, hence ALL versions are affected. This explo...
Immunity Canvas: OWA_RCE
Name| owarce ---|--- CVE| CVE-2020-0688 Exploit Pack| CANVAS Description| owarce Notes| CVE Name: CVE-2020-0688 VENDOR: Microsoft NOTES: This exploit has been tested on Microsoft Exchange Server 2016 CU 15 VersionsAffected: VERSIONS Repeatability: Infinite References:...
Immunity Canvas: ADOBE_FLASH_METADATA_UAF
Name| adobeflashmetadatauaf ---|--- CVE| CVE-2018-15982 Exploit Pack| CANVAS Description| adobeflashmetadatauaf Notes| CVE Name: CVE-2018-15982 VENDOR: Adobe NOTES: In the package com.adobe.tvsdk.mediacore.metadata the setObject method does not set a reference to the key String Object so if we...
Immunity Canvas: MS14_068
Name| ms14068 ---|--- CVE| CVE-2014-6324 Exploit Pack| CANVAS Description| Kerberos Checksum Vulnerability Notes| CVE Name: CVE-2014-6324 VENDOR: Microsoft MSADV: MS14-068 Repeatability: Note: Please refer to the Microsoft URLs to know exactly the conditions for when this vulnerability is...
Immunity Canvas: MS06_057
Name| ms06057 ---|--- CVE| CVE-2006-3730 Exploit Pack| CANVAS Description| Internet Explorer WebViewFolderIcon Overflow Notes| CVE Name: CVE-2006-3730 VENDOR: Microsoft MSADV: MS06-057 VersionsAffected: Repeatability: Infinite References:...
Immunity Canvas: NETSCALER_TRAVERSAL_RCE
Name| netscalertraversalrce ---|--- CVE| CVE-2019-19781 Exploit Pack| CANVAS Description| netscalertraversalrce Notes| CVE Name: CVE-2019-19781 VENDOR: Citrix NOTES: This version of the module will take care of all our artifacts and will report them just to be safe in case something went wrong...
Immunity Canvas: ELASTICSEARCH_CVE_2015_1427
Name| elasticsearchCVE20151427 ---|--- CVE| CVE-2015-1427 Exploit Pack| CANVAS Description| elasticsearchCVE-2015-1427 Notes| CVE Name: CVE-2015-1427 VENDOR: elastic Notes: Elasticsearch versions 1.3.x before 1.3.8 and 1.4.x before 1.4.3 have dynamic scripting features enabled by default using...
Immunity Canvas: CVE_2010_4344
Name| CVE20104344 ---|--- CVE| CVE-2010-4344 Exploit Pack| CANVAS Description| CVE-2010-4344 Notes| CVE Name: CVE-2010-4344 VENDOR: exim Repeatability: Infinite References: 'http://bugs.exim.org/showbug.cgi?id=787', 'http://www.exim.org/lurker/message/20101207.215955.bb32d4f2.en.html' CVE Url:...
Immunity Canvas: MS06_070
Name| ms06070 ---|--- CVE| CVE-2006-4691 Exploit Pack| CANVAS Description| Microsoft Workstation Service Overflow Notes| CVE Name: CVE-2006-4691 VENDOR: Microsoft Notes: This exploit actually needs a domain reachable from the attacked machine Platforms Tested: MSADV: MS06-070 References:...
Immunity Canvas: IIS_DOUBLEDECODE
Name| iisdoubledecode ---|--- CVE| CVE-2001-0333 Exploit Pack| CANVAS Description| iisdoubledecode MS01-026 Notes| CVE Name: CVE-2001-0333 VENDOR: Microsoft Notes: The IIS Double Decode module will automatically use tftp to get a MOSDEF node on the remote target. This will not work through a...
Immunity Canvas: COLDFUSION_RCE
Name| coldfusionrce ---|--- CVE| CVE-2018-15957 Exploit Pack| CANVAS Description| CVE-2018-15957 Notes| CVE Name: CVE-2018-15957 VENDOR: Oracle NOTES: This exploit will work against ColdFusion 2018 update 1, ColdeFusion 2016 = update 6 and ColdFusion 11 = update 14. Repeatability: Infinite...
Immunity Canvas: NGINX_CHUNK
Name| nginxchunk ---|--- CVE| cve-2013-2028 Exploit Pack| CANVAS Description| Nginx Chunked Encoding Exploit Notes| CVE Name: cve-2013-2028 VENDOR: Nginx Repeatability: The repeatability of this exploit depends on the number of nginx worker processes configured in conf/nginx.conf; the default is ...
Immunity Canvas: PSERVERD
Name| pserverd ---|--- CVE| CVE-2004-0396 Exploit Pack| CANVAS Description| CVS pserverd Notes| CVE Name: CVE-2004-0396 VENDOR: nongnu.org Notes: This overflow impacts CVS feature versions 1.12.7 and earlier, and stable versions 1.11.15 https://vulners.com/cve/CVE-2004-0396. ab note: cvsd running...
Immunity Canvas: JENKINS_CHECKSCRIPT_RCE
Name| jenkinscheckscriptrce ---|--- CVE| CVE-2019-1003029 Exploit Pack| CANVAS Description| RCE on Jenkins checkScript Notes| CVE Name: CVE-2019-1003029 CVE-2019-1003005 CVE-2018-1000861 VENDOR: Jenkins NOTES: Groovy Plugin supports sandboxed Groovy expressions for its 'System Groovy'...
Immunity Canvas: WINDOWS_SHELL_LNK
Name| windowsshelllnk ---|--- CVE| CVE-2010-2568 Exploit Pack| CANVAS Description| windowsshelllnk Notes| CVE Name: CVE-2010-2568 VENDOR: Microsoft Notes: VersionsAffected: Windows XP, Windows 2003, Windows Vista, Windows 2008, Windows 7 Repeatability: Infinite References:...
Immunity Canvas: SUN_JAVA_HSBPARSER_LINUX
Name| sunjavahsbparserlinux ---|--- CVE| CVE-2009-3867 Exploit Pack| CANVAS Description| sunjavahsbparserlinux Notes| URL: http://seclists.org/bugtraq/2009/Nov/37 CVE Name: CVE-2009-3867 VENDOR: Sun CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2009-3867...
Immunity Canvas: PIWIK
Name| piwik ---|--- CVE| CVE-2009-4137 Exploit Pack| CANVAS Description| Piwik unserialize + destruct Notes| References: 'http://www.sektioneins.com/en/advisories/advisory-032009-piwik-cookie-unserialize-vulnerability/', 'http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-4137' Notes: This...
Immunity Canvas: VBULLETIN_WIDGET_RCE
Name| vbulletinwidgetrce ---|--- CVE| CVE-2019-16759 Exploit Pack| CANVAS Description| RCE via widgetConfigcode paramater in vBulletin Notes| CVE Name: CVE-2019-16759 VENDOR: vBulletin NOTES: An unauthenticated code execution bug can be exploited on the vBulletin core for the following versions:...
Immunity Canvas: ATMFD_POOL_BUFFER_UNDERFLOW
Name| atmfdpoolbufferunderflow ---|--- CVE| CVE-2015-2387 Exploit Pack| CANVAS Description| ATMFD.dll Pool Buffer Underflow Notes| Repeatability: Infinite Notes: This module exploits a vulnerability on the Adobe Type Manager Font Driver ATMFD.DLL. While processing a font data there exists a buffe...