619 matches found
Immunity Canvas: MS15_051
Name| ms15051 ---|--- CVE| CVE-2015-1701 Exploit Pack| CANVAS Description| win32k.sys bServerSideWindowProc flag logic issue Notes| Repeatability: Infinite Notes: This module exploits a vulnerability on the win32k.sys driver. The bServerSideWindowProc flag on the window's handle structure is mean...
Immunity Canvas: MEWEBMAIL
Name| MEWebMail ---|--- CVE| CVE-2005-1348 Exploit Pack| CANVAS Description| MailEnable WebMail Authorization Buffer Overflow Notes| References: Found by CorryL of www.x0n3-h4ck.org CVE Name: CVE-2005-1348 VENDOR: MailEnable Repeatability: This is a repeatable exploit given that the node is...
Immunity Canvas: CVE_2012_1182
Name| CVE20121182 ---|--- CVE| CVE-2012-1182 Exploit Pack| CANVAS Description| CVE-2012-1182 Notes| References: http://www.samba.org CVE Name: CVE-2012-1182 VENDOR: Samba Repeatability: Repeatable Date Public: 04/10/2012 CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-CVE-2012-118...
Immunity Canvas: NSS
Name| nss ---|--- CVE| CVE-2004-0826 Exploit Pack| CANVAS Description| NSS overflow Notes| CVE Name: CVE-2004-0826 VENDOR: Mozilla References: http://www.osvdb.org/displayvuln.php?osvdbid=9116 CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0826 Date public: 23 of August, 2004...
Immunity Canvas: BRIGHTSTOR_CMDEXEC
Name| brightstorcmdexec ---|--- CVE| CVE-2008-4397 Exploit Pack| CANVAS Description| brightstorcmdexec Notes| CVE Name: CVE-2008-4397 VENDOR: Computer Associates Notes: This exploit will start a TFTP server which is why it requires root and have the remote side download and execute a MOSDEF...
Immunity Canvas: UDEVD
Name| udevd ---|--- CVE| CVE-2009-1185 Exploit Pack| CANVAS Description| udevd Notes| References: 'http://c-skills.blogspot.com/2009/04/udev-trickery-cve-2009-1185-and-cve.html' CVE Name: CVE-2009-1185 VENDOR: Linux Notes: Date public: 04-17-2009 CVE Url:...
Immunity Canvas: ADOBE_FLASH_VALUEOF
Name| adobeflashvalueof ---|--- CVE| CVE-2015-5119 Exploit Pack| CANVAS Description| adobeflashvalueof Notes| CVE Name: CVE-2015-5119 VENDOR: Adobe Notes: Tested on: - Windows 7 x86/x64 IE32/64 8, 9, 11 This module exploits a use after free vulnerability on Adobe Flash Player. When you have a...
Immunity Canvas: MS14_025
Name| ms14025 ---|--- CVE| CVE-2014-1812 Exploit Pack| CANVAS Description| ms14025 Notes| CVE Name: CVE-2014-1812 VENDOR: Microsoft Commandline: runmodule ms14-025 References: https://technet.microsoft.com/library/security/ms14-025 CVE Url:...
Immunity Canvas: WIRESHARK_DECT
Name| wiresharkdect ---|--- CVE| CVE-2011-1591 Exploit Pack| CANVAS Description| Wireshark DECT Dissector Remote Overflow Notes| CVE Name: CVE-2011-1591 Notes: Tested on Wireshark 1.4.4 on WinXP CVE Url: https://vulners.com/cve/CVE-2011-1591...
Immunity Canvas: JBOSS_JMXCONSOLE_DEPLOYER
Name| jbossjmxconsoledeployer ---|--- CVE| CVE-2010-0738 Exploit Pack| CANVAS Description| jbossjmxconsoledeployer Notes| CVE Name: CVE-2010-0738 VENDOR: Red Hat Notes: JBoss Web JMX Console exposes services that can be used to deploy a new application. This exploit will try to deploy an...
Immunity Canvas: PHPBB_HIGHLIGHT
Name| phpbbhighlight ---|--- CVE| CVE-2005-2086 Exploit Pack| CANVAS Description| phpBB Highlight Notes| CVSS: 7.5 Repeatability: Infinite VENDOR: phpbb.com CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=2005-2086 CVE Name: CVE-2005-2086...
Immunity Canvas: SNAPD_UID_OVERWRITE
Name| snapduidoverwrite ---|--- CVE| CVE-2019-7304 Exploit Pack| CANVAS Description| snapduidoverwrite Notes| CVE Name: CVE-2019-7304 VENDOR: snapd team NOTES: The snapd service runs as an REST API using a Unix Domain Socket, is possible to send request when the uid is 0 root, the vulnerability i...
Immunity Canvas: PODCASTGEN_INCLUDE
Name| podcastgeninclude ---|--- CVE| CVE-2008-1124 Exploit Pack| CANVAS Description| Podcast Generator = 1.0 BETA 2 remote file include Notes| CVE Name: CVE-2008-1124 VENDOR: podcastgen Repeatability: Infinite References: http://www.securityfocus.com/bid/28038 CVE Url:...
Immunity Canvas: SANDWORM
Name| sandworm ---|--- CVE| CVE-2014-4114 Exploit Pack| CANVAS Description| Sandworm - MS14-060 - Windows OLE Remote Code Execution Vulnerability. Notes| Repeatability: Infinite Notes: This exploit creates a blank PPSX file Powerpoint show presentation, to use it you just have to add some stuff t...
Immunity Canvas: VMSPLICE
Name| vmsplice ---|--- CVE| CVE-2008-0600 Exploit Pack| CANVAS Description| vmsplice Notes| References: 'http://www.coseinc.com/coseinclinuxadvisory3.pdf', 'https://bugs.launchpad.net/ubuntu/+source/linux-source-2.6.22/+bug/190587' CVE Name: CVE-2008-0600 VENDOR: Linux Notes: If you run this more...
Immunity Canvas: IDRAC_APPWEB_RCE
Name| idracappwebrce ---|--- CVE| CVE-2018-1207 Exploit Pack| CANVAS Description| iDrac8 WebApp RCE Notes| CVE Name: CVE-2018-1207 NOTES: This module exploits a CGI Injection vulnerability in iDRAC8 in order to achieve Remote Code Execution. We upload a shared library that we can then invoke with...
Immunity Canvas: PHP_LIMIT
Name| phplimit ---|--- CVE| CVE-2004-0594 Exploit Pack| CANVAS Description| phplimit Notes| CVE Name: CVE-2004-0594 VENDOR: PHP OSVDB: Repeatability: Multiple tries References: http://security.e-matters.de/advisories/112004.html CVE Url: https://vulners.com/cve/CVE-2004-0594 Date public: 2004/07/...
Immunity Canvas: RSYNC
Name| rsync ---|--- CVE| CVE-2003-0962 Exploit Pack| CANVAS Description| rsync Notes| CVE Name: CVE-2003-0962 Affected: rsync prior to 2.5.7 rsync.samba.org Patch: http://samba.org/ftp/rsync/old-patches/rsync-2.5.6-2.5.7.diffs.gz NOTE: Because of some of the steps taken in this exploit to make it...
Immunity Canvas: CVE_2014_9222
Name| CVE20149222 ---|--- CVE| CVE-2014-9222 Exploit Pack| CANVAS Description| CVE-2014-9222 Misfortune Cookie Notes| CVE Name: CVE-2014-9222 VENDOR: Alegro Notes: This module exploits the arbitrary memory overwrite vulnerability in RomPager embedded web-server, which was originally introduced by...
Immunity Canvas: LINUX_PPPOL2TP
Name| linuxpppol2tp ---|--- CVE| CVE-2014-4943 Exploit Pack| CANVAS Description| pppol2tp local root Notes| Repeatability: Single Notes: Exploit for Linux = 3.4.x amd64 and = 3.7.x x86 Tested on + Ubuntu 13.04 / 13.10 / 14.04 x86/amd64 + Fedora 17 amd64 only + Fedora 18/19/20 x86/amd64 Note:...
Immunity Canvas: TTDB_XDRARRAY
Name| ttdbxdrarray ---|--- CVE| CVE-2002-0391 Exploit Pack| CANVAS Description| rpc.ttdbserverd xdrarray Heap Overflow Notes| References: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F46122 CVE Name: CVE-2002-0391 VENDOR: Sun Patch Info: Solaris 2.5.1: 103640-42, Solaris 2.6: 105401-3...
Immunity Canvas: WPDM_FILEUPLOAD
Name| wpdmfileupload ---|--- CVE| CWE-434 Exploit Pack| CANVAS Description| wpdmfileupload Notes| CVE Name: CWE-434 VENDOR: wpeden.com Changelog: Notes: WordPress Download Manager WPDM 2.6.92 allows for authenticated users admin, editor, author, contributor, subscriber to delete and upload...
Immunity Canvas: ALPC_TASKSCHED_LPE
Name| alpctaskschedlpe ---|--- CVE| CVE-2018-8440 Exploit Pack| CANVAS Description| ALPC Tasksched LPE Notes| CVE Name: CVE-2018-8440 Notes: WARNING: The PrintConfig.dll on the target host will be overwritten when the exploit runs. Tested: Windows 10 1703 x64 Windows 10 1803 x86 VENDOR: Microsoft...
Immunity Canvas: JOOMLA12PIC_INCLUDE
Name| joomla12picinclude ---|--- CVE| CVE-2007-4954 Exploit Pack| CANVAS Description| Joomla 12pic Component Remote File Inclusion Notes| CVE Name: CVE-2007-4954 VENDOR: Joomla Repeatability: Infinite References: http://securityreason.pl/exploitalert/2780 CVE Url:...
Immunity Canvas: ADOBE_FLASH_REGEXP
Name| adobeflashregexp ---|--- CVE| CVE-2013-0634 Exploit Pack| CANVAS Description| adobeflashregex Notes| CVE Name: CVE-2013-0634 VENDOR: Adobe Notes: This module exploit's a heap based buffer overflow on Adobe Flash Player while handling a regex object. It bypasses ASLR leaking a vtable pointer...
Immunity Canvas: STRUTSCODEINJECTION
Name| strutsCodeInjection ---|--- CVE| CVE-2012-0394 Exploit Pack| CANVAS Description| Struts Code Injector Notes| CVE Name: CVE-2012-0394 VENDOR: Apache Notes: CVE-2012-0394 - Struts = 2.2.1.1 ExceptionDelegator When an exception occurs while applying parameter values to properties, the value is...
Immunity Canvas: SETIMEINFOEX_LPE
Name| setimeinfoexlpe ---|--- CVE| CVE-2018-8120 Exploit Pack| CANVAS Description| SetImeInfoEx LPE Notes| CVE Name: CVE-2018-8120 Notes: Tested: Windows 7 x64 Windows 7 x86 Windows Vista x86 Windows 2008 R2 x64 VENDOR: Microsoft CVE Url: https://nvd.nist.gov/vuln/detail/CVE-2018-8120 CVSS: 7.0...
Immunity Canvas: LINUX_FUTEX_REQUEUE
Name| linuxfutexrequeue ---|--- CVE| CVE-2014-3153 Exploit Pack| CANVAS Description| Futex Requeue Privilege Escalation Exploit Notes| Repeatability: Multiple times Notes: - Supported 64bit kernels: 3.11.0-13-22-generic - Ubuntu saucy 13.10 3.11.0-13-22-generic - Ubuntu precise 12.04...
Immunity Canvas: CLOUDBURST
Name| CLOUDBURST ---|--- CVE| CVE-2009-1244 Exploit Pack| CANVAS Description| CLOUDBURST VMware Workstation Guest Escape Notes| CVE Name: CVE-2009-1244 VENDOR: VMware Notes: The exploit currently only supports a Windows Guest in a Windows Host, with "Accelerate 3D Graphics" enabled default on new...
Immunity Canvas: MS08_067
Name| ms08067 ---|--- CVE| CVE-2008-4250 Exploit Pack| CANVAS Description| Windows Server Service Underflow MS08-067 Notes| References: http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx CVE Name: CVE-2008-4250 VENDOR: Microsoft Notes: If you need some localized version of Windows X...
Immunity Canvas: PERF_SWEVENT_INIT
Name| perfsweventinit ---|--- CVE| CVE-2013-2094 Exploit Pack| CANVAS Description| perfsweventinit local root Notes| Repeatability: Infinite Notes: Tested on: - Ubuntu 12.10 quantal x8664 3.5.0-27-generic VENDOR: GNU/Linux CVE Url: https://vulners.com/cve/CVE-2013-2094 CVE Name: CVE-2013-2094...
Immunity Canvas: DSU
Name| DSU ---|--- CVE| CVE-2006-2451 Exploit Pack| CANVAS Description| DSU Notes| CVSS: 4.6 Date public: 07-07-2006 VENDOR: Linux CVE Url: https://vulners.com/cve/CVE-2006-2451 CVE Name: CVE-2006-2451...
Immunity Canvas: MS01_023
Name| ms01023 ---|--- CVE| CVE-2001-0241 Exploit Pack| CANVAS Description| IIS 5.0 IPP ISAPI .printer Overflow Notes| CVE Name: CVE-2001-0241 VENDOR: Microsoft MSADV: MS01-023 VersionsAffected: Repeatability: References: http://www.microsoft.com/technet/security/bulletin/MS01-023.mspx CVE Url:...
Immunity Canvas: IE_SETUSERCLIP
Name| iesetuserclip ---|--- CVE| CVE-2010-3962 Exploit Pack| CANVAS Description| iesetuserclip Notes| Date public: 11/04/2010 Notes: This bug was discovered in the wild. IE6, 7 and 8 are vulnerable to this bug, but because of its behaviour some versions will not be exploitable. The only full...
Immunity Canvas: SUNLOGIN_PAMH
Name| sunloginpamh ---|--- CVE| CVE-2001-0797 Exploit Pack| CANVAS Description| Sun Login pamh Overflow Notes| References: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F41987&zone32=category%3Asecurity CVE Name: CVE-2001-0797 VENDOR: Sun Patch Information: Solaris 2.5.1 patch 106160-0...
Immunity Canvas: MS06_040
Name| ms06040 ---|--- CVE| CVE-2006-3439 Exploit Pack| CANVAS Description| Windows Server Service Overflow MS06-040 Notes| References: http://www.microsoft.com/technet/security/Bulletin/MS06-040.mspx CVE Name: CVE-2006-3439 VENDOR: Microsoft MSADV: MS06-040 Repeatability: Infinite Note: Due to th...
Immunity Canvas: YPPASSWDD
Name| yppasswdd ---|--- CVE| CVE-2001-0779 Exploit Pack| CANVAS Description| yppasswdd YPPASSWDUPDATE Stack Overflow Notes| References: http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F27486&zone32=category%3Asecurity%20yppasswdd CVE Name: CVE-2001-0779 VENDOR: Sun Patch Info: Solaris 2....
Immunity Canvas: ALPC_TAKEOVER_LPE
Name| alpctakeoverlpe ---|--- CVE| CVE-2019-0841 Exploit Pack| CANVAS Description| ALPC Takeover LPE Notes| CVE Name: CVE-2019-0841 NOTES: Works with Medium Integrity Level Tested: - Windows 10 1703 x64 - Windows 10 1709 x64 - Windows 10 1803 x86, x64 - Windows 10 1809 x86, x64 VENDOR: Microsoft...
Immunity Canvas: MS14_040
Name| ms14040 ---|--- CVE| CVE-2014-1767 Exploit Pack| CANVAS Description| AFD.SYS dangling pointer vulnerability Notes| Repeatability: Infinite Notes: This vulnerability affects Microsoft Windows from XP to 8.1, although the exploit is not available for every version. This module automatically...
Immunity Canvas: FIREFOX_ARRAY_REDUCERIGHT
Name| firefoxarrayreduceright ---|--- CVE| CVE-2011-2371 Exploit Pack| CANVAS Description| Firefox Array reduceRight Notes| CVE Name: CVE-2011-2371 CVE URL: https://vulners.com/cve/CVE-2011-2371 Repeatability: Infinite...
Immunity Canvas: GAPPLE_CLIENT
Name| gappleclient ---|--- CVE| CVE-2005-0045 Exploit Pack| CANVAS Description| GREENAPPLE MS05-011 Notes| CVE Name: CVE-2005-0045 VENDOR: Microsoft Pre-exploitation: Requires CANVAS to be run as root/administrator MSADV: MS05-011 MSRC:...
Immunity Canvas: MS03_049
Name| ms03049 ---|--- CVE| CVE-2003-0812 Exploit Pack| CANVAS Description| Microsoft Windows Workstation Service RPC Overflow Notes| CVE Name: CVE-2003-0812 VENDOR: Microsoft Notes: This exploit will crash the service if XP SP1a is running under Virtual PC or Virtual Server Microsoft's...
Immunity Canvas: DRUPAL_NAME_SQLI_CALLBACK
Name| drupalnamesqlicallback ---|--- CVE| CVE-2014-3704 Exploit Pack| CANVAS Description| Drupal injection exploit Notes| CVE Name: CVE-2014-3704 VENDOR: drupal.org Notes: This exploit tries to open a php callback to canvas by injecting php code in Drupal's login block through the database sql...
Immunity Canvas: MS10_059
Name| ms10059 ---|--- CVE| CVE-2010-2554 Exploit Pack| CANVAS Description| ms10059 Notes| References: http://www.microsoft.com/technet/security/bulletin/MS10-059.mspx CVE Name: CVE-2010-2554 VENDOR: Microsoft Notes: This exploit gain SYSTEM from NETWORKSERVICE or DefaultAppPool user by duplicatin...
Immunity Canvas: WEBMIN
Name| webmin ---|--- CVE| CVE-2005-3912 Exploit Pack| CANVAS Description| Webmin Remote Exploit Notes| CVE Name: CVE-2005-3912 VENDOR: Webmin.com OSVDB: Repeatability: References: http://www.dyadsecurity.com/webmin-0001.html - http://www.dyadsecurity.com/perl-0002.html CVE Url:...
Immunity Canvas: SAMBA_TRANS2
Name| sambatrans2 ---|--- CVE| CVE-2003-0201 Exploit Pack| CANVAS Description| sambatrans2 Notes| References: http://www.redhat.com/support/errata/RHSA-2003-137.html CVE Name: CVE-2003-0201 VENDOR: Samba Date public: Apr 07, 2003 CERT Advisory: Versions Tested: Red Hat Linux release 8.0 Psyche:...
Immunity Canvas: RAILS_ACTIVESTORAGE_RCE
Name| railsactivestoragerce ---|--- CVE| CVE-2019-5420 Exploit Pack| CANVAS Description| Ruby on Rails Arbitrary Deserialization RCE CVE-2019-5420 Notes| CVE Name: CVE-2019-5420 VENDOR: Rails NOTES: The vulnerability resides in the ActionStorage component of Ruby on Rails due to insufficient...
Immunity Canvas: ACROBAT_U3D_MESH
Name| acrobatu3dmesh ---|--- CVE| CVE-2009-3953 Exploit Pack| CANVAS Description| acrobatu3dmesh Notes| CVE Name: CVE-2009-3953 Notes: This exploit works on Windows XP without DEP. DEP defaults to "opt-in" on Windows XP SP2/3. IE8 and modern Firefox will opt-in to DEP, causing this exploit to fai...
Immunity Canvas: 3COMTFTP
Name| 3comtftp ---|--- CVE| CVE-2006-6183 Exploit Pack| CANVAS Description| 3comTFTP Notes| CVE Name: CVE-2006-6183 VENDOR: 3com Notes: This exploit should work against 3ComTFTPD version 2.0.1 - the current version is called 3ComDaemon version 2.0.10, which is a completely different program...
Immunity Canvas: MS04_011_LSASS
Name| ms04011lsass ---|--- CVE| CVE-2003-0533 Exploit Pack| CANVAS Description| Microsoft Windows LsaSs RPC Overflow Notes| CVE Name: CVE-2003-0533 VENDOR: Microsoft MSADV: MS04-011-LSASS VersionsAffected: Repeatability: References: http://www.microsoft.com/technet/security/Bulletin/MS04-011.mspx...