Metasploit mailing list archives
WMF: New Metasploit Framework Module
From: hdm at metasploit.com (H D Moore)
Date: Sat, 31 Dec 2005 01:35:44 -0600
We just released a new version of the Metasploit Framework exploit module for the Escape/SetAbortFunc code execution flaw. This module now pads the Escape() call with random WMF records. You may want to double check your IDS signatures -- most of the ones I saw today could be easily bypassed or will false positive on valid graphic files. Available via msfupdate, the 2.5 snapshot, or straight from the web site: http://metasploit.com/projects/Framework/exploits.html#ie_xp_pfv_metafile -HD
Current thread:
- WMF: New Metasploit Framework Module H D Moore (Dec 30)
- WMF: New Metasploit Framework Module Chris Byrd (Dec 31)
- WMF: New Metasploit Framework Module str0ke (Dec 31)
- WMF: New Metasploit Framework Module H D Moore (Dec 31)
- WMF: New Metasploit Framework Module Chris Byrd (Dec 31)
- WMF: New Metasploit Framework Module rrecaba at usb.ve (Dec 31)
- WMF: New Metasploit Framework Module H D Moore (Dec 31)
- WMF: New Metasploit Framework Module Chris Byrd (Dec 31)