Network Security: Detailed info on [Full-disclosure] WMF: New Metasploit Framework Module

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security FullDisclosure

Subject:	[Full-disclosure] WMF: New Metasploit Framework Module
Date:	Sat, 31 Dec 2005 01:35:16 -0600

Subject:

[Full-disclosure] WMF: New Metasploit Framework Module

Date:

Sat, 31 Dec 2005 01:35:16 -0600

We just released a new version of the Metasploit Framework exploit module for the Escape/SetAbortFunc code execution flaw. This module now pads the Escape() call with random WMF records. You may want to double check your IDS signatures -- most of the ones I saw today could be easily bypassed or will false positive on valid graphic files. Available via msfupdate, the 2.5 snapshot, or straight from the web site: http://metasploit.com/projects/Framework/exploits.html#ie_xp_pfv_metafile -HD _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/

<Prev in Thread]	Current Thread	[Next in Thread>
[Full-disclosure] WMF: New Metasploit Framework Module, H D Moore <=

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	[Full-disclosure] Xanga Hit By Script Worm?, Matthew Murphy
Next by Date:	Re: [Full-disclosure] Is this a Virus?, wac
Previous by Thread:	[Full-disclosure] Xanga Hit By Script Worm?, Matthew Murphy
Next by Thread:	Re: [Full-disclosure][WAY OFF TOPIC] complaints aboutthegovernemntspying!, senator . crabgrass
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

[Full-disclosure] Xanga Hit By Script Worm?, Matthew Murphy

Next by Date:

Re: [Full-disclosure] Is this a Virus?, wac

Previous by Thread:

[Full-disclosure] Xanga Hit By Script Worm?, Matthew Murphy

Next by Thread:

Re: [Full-disclosure][WAY OFF TOPIC] complaints aboutthegovernemntspying!, senator . crabgrass

Indexes:

[Date] [Thread] [Top] [All Lists]