Exploit development can be an advanced penetration testing skill that takes time to master. Additionally, when on a job, pen testers often don’t have the resources to create a new exploit. Many resort to searching for and using pre-written exploits that have not been tested and must go through the timely effort of quality assurance testing in order to ensure they are secure and effective.

Core Impact users can save time by finding all the up-to-date exploits they need in one place. We provide a robust library of exploits designed to enable pen testers to safely and efficiently conduct successful penetration tests. Witten by our own internal team, you can trust they have been thoroughly tested and validated by our experts.

How Do We Choose Which Exploits to Create?

The universe of vulnerabilities is huge and not all of them represent the same risk for the customers. Vulnerabilities do not all have the same level of criticality. Some may be easily exploitable by a low-level user, while others may not be exploitable at all. To increase the efficiency of the attacks and the quality of the exploits provided, the Core Impact team has developed selection criteria to prioritize its analysis and implementation. We determine which exploits warrant creation based on the following questions:

What are the most critical attacks from the attacker’s perspective?
What new vulnerabilities are more likely to be exploited in real attacks?
What exploits are the most valuable for Core Impact?

How Do We Prioritize Exploit Implementation?

Once an exploit is approved, its priority order considers the following variables:

Vulnerability Properties: CVE, disclosure date, access mechanism and privileges needed.
Target Environment Setup: OS, application prevalence, version and special configurations needed.
Value Provided to Core Impact: Customer request, usage in multiple attacks, allows the installation of an agent, etc.
Technical Cost vs. Benefit: An analysis weighing the resources needed to build an exploit with the internal and external knowledge gained in its creation.

Each one of these variables has a different weight and provides a ranking of the potential exploits to be developed. Following those criteria, the top of the list would contain, for example, a vulnerability on Windows (most popular OS) that can be exploited remotely, without authentication and that provides super user privileges.

Correspondingly, a vulnerability on an application that is rarely installed, needs special configurations, and requires User Interaction, would be at the bottom.

Stay Informed of New Core Certified Exploits

Subscribe to receive regular email updates on new exploits available for Core Impact

Browse the Core Certified Exploit Library

We provide pen testers with real-time updates for a wide range of exploits for different platforms, operating systems, and applications.

Search our continuously growing library to discover an exploit that will allow you to gain and retain access on the target host or application.

Exploit Name

Vulnerability

Platform

Exploit Type

Product Name

Title	Description	Date Added	CVE Link	Exploit Platform	Exploit Type	Product Name
Cisco Webex Meetings webexservice Update Service ptUpdate Downgrade Local Privilege Escalation Exploit	A vulnerability in the update service of Cisco Webex Meetings Desktop App for Windows could allow an authenticated local attacker, to execute arbitrary commands with SYSTEM user privileges.	February 27, 2019	CVE-2019-1674	Windows	Exploits / Local	Impact
Dokany Google Drive File Stream Kernel Buffer Overflow Privileged Escalation Exploit	Dokan redistributable are vulnerable to a buffer overflow in the dokan1.sys driver. An attacker can create a device handle to the system driver and send arbitrary input that will trigger the vulnerability.	February 22, 2019	CVE-2018-5410	Windows	Exploits / Local	Impact
Linux snapd dirty_sock Local Privilege Escalation Exploit Update	This module exploits a vulnerability in snapd which incorrectly validates and parses the remote socket address when performing access controls on its UNIX socket. A local attacker could use this to access privileged socket APIs and obtain administrator privileges. This update adds support for more platforms.	February 22, 2019	CVE-2019-7304	Linux	Exploits / Local	Impact
Linux snapd dirty_sock Local Privilege Escalation Exploit	This module exploits a vulnerability in snapd which incorrectly validates and parses the remote socket address when performing access controls on its UNIX socket. A local attacker could use this to access privileged socket APIs and obtain administrator privileges.	February 21, 2019	CVE-2019-7304	Linux	Exploits / Local	Impact
Microsoft Windows DCOM-RPC NTLM Reflection Elevation of Privilege Exploit	This update adds an exploit which implements the Rotten Potato technique to perform a Local Privilege Escalation. It leverages on local DCOM DCE/RPC connections that can be reflected back to a listening TCP socket allowing access to an NTLM authentication challenge for LocalSystem user which can be replayed to the local DCOM activation service. An attacker who successfully exploited this vulnerability could bypass security and gain elevated privileges on a targeted system.	February 14, 2019	CVE-2016-3225	Windows	Exploits / Local	Impact
OracleDB TNS Listener Remote Poisoning Vulnerability Detector	Oracle Database Server is prone to a remote vulnerability that allows attackers to poison the data handled by the remote 'TNS Listener' component of the application. This module tries to verify if the vulnerability is present in the 'TNS Listener' component of the database server, without deploying an agent.	February 8, 2019	CVE-2012-1675	Windows, Linux	Exploits / Remote	Impact
Advantech WebAccess SCADA BwPAlarm Buffer Overflow Exploit	Advantech WebAccess SCADA lack of proper validation of user supplied input may allow an attacker to cause the overflow of a buffer overflow and executes remote code.	February 5, 2019	CVE-2018-18999	Windows	Exploits / Remote	Impact
Horner Automation Cscape CSP File Buffer Overflow Exploit	The specific flaw exists within the parsing of CSP files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a buffer.	January 31, 2019	CVE-2018-19005	Windows	Exploits / Client Side	Impact
AV Evasion Improvements_V9	Single stage agent wrappers were modified to be more stealth	January 30, 2019			Exploits / Remote	Impact
TFM MMPlayer Buffer Overflow Exploit	A Buffer Overflow exists when parsing .M3U files. The vulnerability is caused due to a boundary error when handling a crafted .M3U files.	January 24, 2019	NOCVE-9999-117773	Windows	Exploits / Client Side	Impact
Omron CX-One CXP File Buffer Overflow Exploit	The specific flaw exists within the parsing of CXP files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a buffer.	January 18, 2019	CVE-2018-18993	Windows	Exploits / Client Side	Impact
PCManFTPD Server APPE Command Buffer Overflow Exploit2	Server is prone to a stack-based buffer overflow vulnerability when processing long requests. This flaw can be exploited to execute arbitrary code by sending the server a special crafted request.	January 16, 2019	CVE-2018-18861	Windows	Exploits / Remote	Impact
VUPlayer Stack Buffer Overflow Exploit	A Buffer Overflow exists when parsing .PLS files. The vulnerability is caused due to a boundary error when handling a crafted .PLS files.	January 10, 2019	NOCVE-9999-116454	Windows	Exploits / Client Side	Impact
Cisco Webex Meetings webexservice Update Service SMB Remote Code Execution Exploit	A vulnerability in the update service of Cisco Webex Meetings Desktop App for Windows could allow an authenticated remote attacker, to execute arbitrary commands with SYSTEM user privileges.	January 3, 2019	CVE-2018-15442	Windows	Exploits / Remote	Impact
ASUS Low Level Access Drivers Privilege Escalation Exploit	This module exploits a vulnerability in various ASUS and 3rd party branded utilities. The low level access drivers at the core of these utilities expose dangerous functionality to low privilege processes, a local attacker can read/write arbitrary kernel memory, which can be leveraged to elevate privileges.	December 18, 2018	CVE-2018-18537	Windows	Exploits / Local	Impact
GIGABYTE Low Level Access Drivers Privilege Escalation Exploit	This module exploits a vulnerability in various GIGABYTE and AORUS branded utilities. The low level access drivers at the core of these utilities expose dangerous functionality to low privilege processes, a local attacker can read/write arbitrary kernel memory, which can be leveraged to elevate privileges.	December 18, 2018	CVE-2018-19320	Windows	Exploits / Local	Impact
Microsoft Windows Win32k xxxMNEndMenuState Local Privilege Escalation Exploit	An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory.	December 17, 2018	CVE-2017-0263	Windows	Exploits / Local	Impact
CyberLink LabelPrint File Project Processing Buffer Overflow Exploit	Stack-based buffer overflows in CyberLink LabelPrint 2.5 allow remote attackers to execute arbitrary code via the (1) author (inside the INFORMATION tag), (2) name (inside the INFORMATION tag), (3) artist (inside the TRACK tag), or (4) default (inside the TEXT tag) parameter in an lpp project file.	December 12, 2018	CVE-2017-14627	Windows	Exploits / Client Side	Impact
Advantech WebAccess webvrpcs Remote Command Execution Exploit	The specific flaw exists within the implementation of the 0x2711 IOCTL in the webvrpcs process. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call.	December 12, 2018	CVE-2018-14806	Windows	Exploits / Remote	Impact
Free WMA MP3 Converter Local Buffer Overflow Exploit	A Local Buffer Overflow exists when parsing .wav files. The vulnerability is caused due to a boundary error when handling a crafted .wav files.	December 11, 2018	NOCVE-9999-115102	Windows	Exploits / Client Side	Impact
CMS Made Simple Module Import PHP Remote Command Injection Vulnerability Exploit	CMS Made Simple allows remote authenticated administrators to execute arbitrary PHP code via command injection using the module import feature in admin/moduleinterface.php	December 11, 2018	CVE-2018-10517	Windows, Linux	Exploits / Remote File Inclusion / Known Vulnerabilities	Impact
Microsoft Windows SchRpcSetSecurity Local Privilege Escalation Exploit	An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC).An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.	November 27, 2018	CVE-2018-8440	Windows	Exploits / Local	Impact
10-Strike LANState Local Buffer Overflow Exploit	A Buffer Overflow exists when parsing .lsm files. The vulnerability is caused due to a boundary error when handling a crafted .lsm files.	November 27, 2018	NOCVE-9999-113689	Windows	Exploits / Client Side	Impact
Cisco Webex Meetings webexservice Update Service DLL Hijacking Local Privilege Escalation Exploit	A vulnerability in the update service of Cisco Webex Meetings Desktop App for Windows could allow an authenticated local attacker, to execute arbitrary commands with SYSTEM user privileges.	November 27, 2018	CVE-2018-15442	Windows	Exploits / Local	Impact
VirIT eXplorer Anti-Virus Arbitrary Write Local Privilege Escalation Exploit	In VirIT eXplorer Anti-Virus, the VIAGLT64.SYS driver file contains an Arbitrary Write vulnerability, and can be exploited to elevate privileges from a local account to SYSTEM.	November 22, 2018	CVE-2017-16237	Windows	Exploits / Local	Impact

Download JSON

Core Certified Exploits

Stay Informed of New Core Certified Exploits

Browse the Core Certified Exploit Library

Privacy Policy

Cookie Policy

Terms of Service

Accessibility

Impressum