Posts tagged as:

zero day

openssh-53p1-remote-root.c – FAKE

by Black on February 7, 2010 · 0 comments

in Source Code

This is an unreleased, private 0day, which we found on an un-secure of a person who was trying to root us.
Use it on your own production environment and handle with care! We should not be held responsible for damages occurring out of the use of this source code.
“OpenSSH is a FREE version of the SSH [...]

Tagged as: ,

{ 0 comments }

How to exploit IE 0day aka (Aurora) With MetaSploit?

by Black on January 19, 2010 · 0 comments

in Penetration Testing

Take a look at the new IE 0day exploit that was added to MetaSploit a couple of days ago.  It works for us and will work for you as well.  We have had a 100% success rate with IE6. IE7 was touch and go, but we could not get it to work with IE8.  In [...]

Tagged as: , , , , ,

{ 0 comments }

Microsoft IIS Zero Day Still Open!

by Black on December 28, 2009 · 0 comments

in Open Source, Security Reconnaissance, Windows

A vulnerability has been identified in the Microsoft Internet Information Services (IIS) where the server in incorrectly handling files with multiple extensions separated by the “;” character such as “malicious.asp;.jpg” as an ASP file.
This allows attackers to upload malicious executable’s on a vulnerable web server, bypassing file extension protections and restrictions!
ASP.Net is NOT affected [...]

Tagged as: , , , ,

{ 0 comments }

← Previous Entries