lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Sat Dec 31 07:35:25 2005 From: fdlist at digitaloffense.net (H D Moore) Subject: WMF: New Metasploit Framework Module We just released a new version of the Metasploit Framework exploit module for the Escape/SetAbortFunc code execution flaw. This module now pads the Escape() call with random WMF records. You may want to double check your IDS signatures -- most of the ones I saw today could be easily bypassed or will false positive on valid graphic files. Available via msfupdate, the 2.5 snapshot, or straight from the web site: http://metasploit.com/projects/Framework/exploits.html#ie_xp_pfv_metafile -HD
Powered by blists - more mailing lists