Statistics
| Branch: | Tag: | Revision:

root / modules / exploits @ master

# Date Author Comment
ed34fd70 02/03/2012 04:39 am Patroklos Argyroudis

Modified (and tested) to work on Lion 10.7.2 and 10.7.3
aa44eb95 02/02/2012 11:27 am sinn3r

Correct author e-mail format
6b29af5c 02/02/2012 03:11 am sinn3r

Add user-agent check. Auto-migrate.
6be65acf 02/02/2012 02:54 am sinn3r

Merge branch 'CVE-2008-2551_c6_DownloaderActiveX' of https://github.com/juanvazquez/met...
de675c34 02/02/2012 02:49 am sinn3r

Upgrade exploit rank, because it fits the description
28b4f4b6 02/02/2012 02:43 am sinn3r

Add Sunway ForceControl NetDBServer.exe Buffer Overflow (Feature #6331)
82eacbe2 02/01/2012 04:26 pm juan

Added module for CVE-2008-2551
e371f0f6 02/01/2012 10:59 am Tod Beardsley

MSFTidy commits...
c3bd1511 01/31/2012 08:43 pm Jonathan Cran

add a ranking
47c7f47f 01/31/2012 08:38 pm Jonathan Cran

Merge branch 'master' of r7.github.com:rapid7/metasploit-framework
d9ee43d3 01/31/2012 08:38 pm Jonathan Cran

add disclosure date
a814a9dc 01/31/2012 08:35 pm Jonathan Cran

add disclosure date
0ba75578 01/31/2012 02:09 pm Oliver-Tobias Ripka

Fix typo in seattlelab_pass.rb exploit....
e392958d 01/31/2012 07:06 am Steve Tornio

add osvdb ref
bfd4734c 01/30/2012 05:34 pm sinn3r

Forgot to add CMD as a datastore option, here it is
08134ad6 01/30/2012 04:17 pm sinn3r

Add Exploit-DB reference
f3c340a9 01/30/2012 04:15 pm sinn3r

Add vBSEO proc_deutf() Remote Code Execution (Feature #6307)
1dec4c0c 01/30/2012 01:08 pm sinn3r

These modules should use vprint_xxx() instead of print_xxx() ... if datastore['VERBOSE']
fbac9a72 01/28/2012 01:18 pm sinn3r

Forgot to remove this comment
7b866eee 01/27/2012 12:50 pm sinn3r

Use the proper function for verbose prints
64651e52 01/27/2012 11:18 am sinn3r

Credit Shane of X-Force for the discovery
b4e22284 01/27/2012 09:15 am HD Moore

Fix exitfunc option name
298b94d3 01/27/2012 03:48 am sinn3r

Add MS12-004 MIDI Heap Overflow Remote Code Execution Exploit (CVE-2012-003)
3952a062 01/26/2012 11:35 am sinn3r

Minor changes
1af6740b 01/25/2012 12:04 pm Christopher McBee

Initial checking of hp_magentservice module
f6a69637 01/24/2012 03:52 pm Tod Beardsley

Msftidy run over the recent changed+added modules
9e5d2ff6 01/19/2012 01:26 pm sinn3r

Improve URI, plus some other minor changes.
ca514920 01/19/2012 01:17 pm sinn3r

Merge branch 'master' of https://github.com/joernchen/metasploit-framework into joernch...
292332d3 01/19/2012 01:03 pm Joshua J. Drake

Add some error handling for tns_version method
2199cd18 01/19/2012 12:50 pm joernchen of Phenoelit

fine tuning thx to sinn3r
df938050 01/19/2012 12:19 pm joernchen of Phenoelit

disclosure date added
8ce47ab8 01/19/2012 11:39 am Tod Beardsley

Changing license for KillBill module...
197eb16f 01/19/2012 04:36 am joernchen of Phenoelit

gitorious remote command exec exploit
ad6f8257 01/18/2012 03:01 pm Tod Beardsley

MSFTidy fixes.
d6e8f0b5 01/18/2012 01:33 pm sinn3r

Add Felipe as an author (plus a reference) because looks like the PoC originally came f...
064a71fb 01/18/2012 12:05 pm sinn3r

Add CVE-2011-3167 HP OpenView NNM exploit (Feature #6245)
e4ed3c96 01/17/2012 06:16 pm sinn3r

Add OSVDB and BID references
75f543f3 01/17/2012 06:11 pm sinn3r

Hilarious, I forgot to change the disclosure date.
2e8122dc 01/17/2012 02:54 pm sinn3r

Better MSF style compliance
a682e680 01/17/2012 12:28 pm sinn3r

Add CVE-2011-4786 HP Easy Printer Care XMLCacheMgr exploit (Feature #6246)
4f16caed 01/17/2012 03:00 am sinn3r

Change naming style for MS type bug
eb564182 01/16/2012 07:56 pm sinn3r

Merge branch 'master' of github.com:rapid7/metasploit-framework
618097ba 01/16/2012 07:55 pm sinn3r

Whitespace and keyword cleanup
c15e7da0 01/16/2012 06:44 pm sinn3r

Add ZDI-12-012 McAfee SaaS ShowReport code execution
46894212 01/16/2012 04:03 pm sinn3r

Correct variable naming style
11fc4233 01/16/2012 01:24 pm Tod Beardsley

Merge pull request #102 from cbgabriel/bsplayer-m3u...
bd31f3f4 01/13/2012 01:21 pm Steve Tornio

add osvdb ref
a8ef3417 01/12/2012 08:54 pm Damon Jones

Fixed the date
2eb35728 01/12/2012 06:37 pm sinn3r

Randomize nops
e75e23b9 01/12/2012 06:13 pm Sam Sharps

Removed more unused variables and fixed some formatting
f22f5403 01/12/2012 06:05 pm Sam Sharps

Removed unused variables
ffe81584 01/12/2012 06:02 pm Damon Jones

updated author
87ee6905 01/12/2012 06:01 pm Sam Sharps

Modified exploit to not need egg hunter shellcode
e42e0004 01/12/2012 05:46 pm sinn3r

Merge branch 'ms05_054_onload' of https://github.com/SamSharps/metasploit-framework int...
ad0b745b 01/12/2012 03:12 pm Damon Jones

new file: modules/exploits/windows/fileformat/bsplayer_m3u.rb
500cfa6d 01/11/2012 02:00 pm Tod Beardsley

Removing telnet_encrypt_keyid_bruteforce.rb to unstable...
092b226c 01/11/2012 07:31 am Tod Beardsley

Updating tns_auth_sesskey to use a user-supplied SID...
7e25f9a6 01/10/2012 02:54 pm Tod Beardsley

Death to unicode...
bc9014e9 01/09/2012 11:51 pm sinn3r

Add new v3.4 target by Michael Coppola (Feature #6207)
90eb2b9a 01/09/2012 07:35 pm sinn3r

Add CVE-2011-4862 encrypt_key_id using the brute-force method (Feature #6202)
8eee54d1 01/09/2012 02:23 pm sinn3r

Add e-mail addr for corelanc0d3r (found it in auxiliary/fuzzers/ftp/client_ftp.rb)
e7d73026 01/09/2012 11:22 am Tod Beardsley

Dropping the umlaut, sacrificing accuracy for usability. Can't guarantee a viewer has a...
5d359785 01/09/2012 04:10 am Patroklos Argyroudis

Firefox 3.6.16 mChannel exploit for Mac OS X 10.6.8, 10.6.7 and 10.6.6
03a39f7f 01/09/2012 02:21 am sinn3r

Whitespace cleanup, also change print_status usage when verbose
2f9d5630 01/09/2012 02:14 am sinn3r

Update reference
243dbe50 01/07/2012 03:18 pm sinn3r

Correct author name. Unfortunately not all editors can print unicode correctly.
4e858aba 01/07/2012 03:13 pm sinn3r

Add CVE-2012-0262 Op5 welcome.php Remote Code Execution
4645c1c2 01/07/2012 03:12 pm sinn3r

Add CVE-2012-0261 Op5 license.php Remote Code Execution
9cf2af6a 01/06/2012 02:00 pm David Maloney

Adds exploit/windows/htt/xampp_webdav_upload_php...
06414c24 01/06/2012 01:03 am Sam Sharps

changed author to my actual name
b26ed374 01/06/2012 12:47 am Sam Sharps

Added description, urls, and another author
5c05ceba 01/06/2012 12:16 am Sam Sharps

Added ms05_054_onload.rb IE 6 SP 2 exploit - CVE-2005-1790
f3a9bc2d 01/06/2012 12:12 am sam

Added ms05_054_onload.rb IE 6 SP 2 exploit - CVE-2005-1790
8315709f 01/04/2012 07:46 pm HD Moore

Correct typo and set the disclosure date
8cced0a9 01/04/2012 03:49 am sinn3r

Add CVE-2011-2462 Adobe Reader U3D exploit
958ffe6e 01/02/2012 03:41 am Joshua J. Drake

Fix stack trace from unknown agents
7bfdc9ef 01/01/2012 09:10 am Steve Tornio

add osvdb ref
d9db03db 12/30/2011 10:16 am sinn3r

Add CoCSoft StreamDown buffer overflow (Feature #6168; no CVE or OSVDB ref)
b202c291 12/29/2011 11:27 am sinn3r

Correct e-mail format
d484e183 12/29/2011 11:14 am sinn3r

Add e-mail for tecr0c
9972f429 12/29/2011 11:01 am sinn3r

Add e-mail for mr_me for consistency
b5b2c57b 12/29/2011 10:57 am sinn3r

Correct e-mail format
a330a5c6 12/29/2011 10:53 am sinn3r

Add e-mail for Brandon
778d396b 12/29/2011 07:54 am Steve Tornio

add osvdb ref
6d72dbb6 12/29/2011 07:54 am Steve Tornio

add osvdb ref
a00dad32 12/29/2011 07:50 am Steve Tornio

Merge branch 'master' of git://github.com/rapid7/metasploit-framework
27d16010 12/29/2011 07:49 am Steve Tornio

add osvdb ref
0e3370f1 12/28/2011 01:42 pm Tod Beardsley

Grammar and spelling on splunk and oracle exploits
5dc647a1 12/28/2011 02:02 am HD Moore

Make it clear that this exploit is for RHEL 3 (White Box 3 uses the same...
5d67bd2a 12/28/2011 01:38 am HD Moore

Phew. Exhaustive test of all i386 FreeBSD versions complete
1ff0cb2e 12/28/2011 01:30 am HD Moore

More testing - looks like 5.5 is not exploitable, at least not the same...
e071944a 12/28/2011 12:04 am HD Moore

Allow ff in payloads but double them back up
edb9843e 12/28/2011 12:00 am HD Moore

Add Linux exploit with one sample target (Whitebox Linux 3)
79103074 12/27/2011 11:39 pm HD Moore

Add credit for Dan's advice
f9224d60 12/27/2011 11:37 pm HD Moore

Adds basic coverage for CVE-2011-4862. Ported from Jaime Penalba...
101eba6a 12/27/2011 12:59 am sinn3r

Add CVE-2011-3587 Plone/Zope Remote CMD Injection (Feature #6151)
4215ef3a 12/24/2011 06:54 am Steve Tornio

add osvdb ref
69570dad 12/23/2011 04:28 pm steponequit

Add CVE-2008-2161 OpenTFTP SP 1.4 Buffer Overflow by steponequit
84c67399 12/23/2011 11:27 am steponequit

added initial opentftp 1.4 windows exploit
41697440 12/23/2011 01:22 am sinn3r

Add Oracle Job Scheduler Command Execution (CreateProcessA) - Feature #6079