Core Certified Exploits

We provide real-time updates including new penetration testing exploits and tests for additional platforms as they become available. We advise you of any new modules by email, after which you can download them directly from within Core Impact. All product updates are free during the license period. You're always on the cutting edge of vulnerability and threat intelligence because Core Impact keeps you there.

Subscribe to receive regular updates by email:

 

Browse All Exploits

 

 

Title Description Date Added CVE Link Exploit Platform Exploit Type
Microsoft Windows Win32k DestroyClass Vulnerability Exploit Update This update adds support for Windows 7 64-bit. May 10, 2019 Windows Exploits / Local
Dnsmasq Heap buffer Overflow DoS Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response. May 10, 2019 Linux Denial of Service / Remote
Atlassian Confluence Widget Connector Macro Vulnerability Exploit The Widget Connector macro in Atlassian Confluence Server allows remote attackers to achieve path traversal and remote code execution via server-side template injection. May 7, 2019 Windows, Linux Exploits / OS Command Injection / Known Vulnerabilities
Dnsmasq Integer Underflow DoS In dnsmasq before 2.78, if the DNS packet size does not match the expected size, the size parameter in a memset call gets a negative value. As it is an unsigned value, memset ends up writing up to 0xffffffff zero's (0xffffffffffffffff in 64 bit platforms), making dnsmasq crash. May 4, 2019 Linux Denial of Service / Remote
Microsoft Windows Win32k DestroyClass Vulnerability Exploit An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. April 26, 2019 Windows Exploits / Local
Microsoft Windows DCOM-RPC NTLM Reflection Elevation of Privilege Exploit Update This update improves the reliability by handling scenarios where the attack cannot be performed. April 17, 2019 Windows Exploits / Local
Microsoft Windows Shell Remote Code Execution Vulnerability Exploit (CVE-2018-8495) Microsoft Windows Shell does not properly sanitize special characters in a URI, allowing the opening a dangerous files.

An attacker can leverage this vulnerability to execute code in the context of the current user.
April 15, 2019 Windows Exploits / Client Side
Apache Tika Server OS Command Injection Exploit An OS Command Injection Vulnerability was found in Apache Tika Server 1.11 April 12, 2019 Windows Exploits / Remote Code Execution
Foxit Reader UAF Remote Execution Exploit A Buffer Overflow exists when parsing .PDF files. The vulnerability is caused due to a boundary error when handling a crafted .PDF files. April 11, 2019 Windows Exploits / Client Side
Free MP3 CD Ripper Buffer Overflow SEH Exploit Update A Buffer Overflow exists when parsing .mp3/wma files. The vulnerability is caused due to a boundary error when handling a crafted .mp3/wma files. April 10, 2019 Windows Exploits / Client Side
Microsoft Windows Win32k UaF xxxDestroyWindow Local Privilege Escalation Exploit An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.



To exploit this vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application that could exploit the vulnerability and take control of an affected system.
April 5, 2019 Windows Exploits / Local
Microsoft Windows DHCP Server Heap Overflow Vulnerability DoS Update A Heap Overflow vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP server. An attacker who successfully exploited the vulnerability could run arbitrary code on the DHCP server.

This version improves the detection of the effectiveness in non-vulnerable targets.
April 2, 2019 Windows Denial of Service / Remote
MS17-010 exploit updates This update adds support for new platforms to the MS17-010 exploitation such as Windows 7 Embedded Standard edition, and also 32 bits targets. March 29, 2019 Windows Exploits / Remote
WinRAR ACE filename Absolute Path Extraction Vulnerability Exploit Path traversal vulnerability in WinRAR when crafting the filename field of the ACE format (in UNACEV2.dll). When the filename field is manipulated with specific patterns, the destination (extraction) folder is ignored, thus treating the filename as an absolute path. March 23, 2019 Windows Exploits / Client Side
STOPzilla AntiMalware Arbitrary Write szkg64 Local Privilege Escalation Exploit The user can write 0 where he wants. This can be used to write SecurityDescriptor and write system processes. Therefore we can elevate privileges. March 20, 2019 Windows Exploits / Local
Linux Kernel eBPF Local Privilege Escalation Exploit An arbitrary memory r/w access issue was found in the Linux kernel compiled with the eBPF bpf(2) system call (CONFIG_BPF_SYSCALL) support. The issue could occur due to calculation errors in the eBPF verifier module, triggered by user supplied malicious BPF program. An unprivileged user could use this flaw to escalate their privileges on a system. Setting parameter "kernel.unprivileged_bpf_disabled=1" prevents such privilege escalation by restricting access to bpf(2) call.

March 16, 2019 Linux Exploits / Local
Microsoft Windows DHCP Server Heap Overflow Vulnerability DoS A Heap Overflow vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP server. An attacker who successfully exploited the vulnerability could run arbitrary code on the DHCP server. March 15, 2019 Windows Denial of Service / Remote
Microsoft Windows Administrator UAC Elevation Bypass Update v1 This update improves the module to bypass UAC by adding support for Windows 10. March 8, 2019 Windows Exploits / Local
Drupal RESTful Web Services Module Remote PHP Command Injection Exploit RESTful Web Services Module does not properly sanitize data from non-form sources. A vulnerability in this approach allows an unauthenticated attacker to send specially crafted requests resulting in arbitrary PHP execution. March 7, 2019 Linux Exploits / OS Command Injection / Known Vulnerabilities
Cisco Webex Meetings webexservice Update Service ptUpdate Downgrade Local Privilege Escalation Exploit A vulnerability in the update service of Cisco Webex Meetings Desktop App for Windows could allow an authenticated local attacker, to execute arbitrary commands with SYSTEM user privileges. February 27, 2019 Windows Exploits / Local
Dokany Google Drive File Stream Kernel Buffer Overflow Privileged Escalation Exploit Dokan redistributable are vulnerable to a buffer overflow in the dokan1.sys driver. An attacker can create a device handle to the system driver and send arbitrary input that will trigger the vulnerability.

February 22, 2019 Windows Exploits / Local
Linux snapd dirty_sock Local Privilege Escalation Exploit Update This module exploits a vulnerability in snapd which incorrectly validates and parses the remote socket address when performing access controls on its UNIX socket.

A local attacker could use this to access privileged socket APIs and obtain administrator privileges.



This update adds support for more platforms.
February 22, 2019 Linux Exploits / Local
Linux snapd dirty_sock Local Privilege Escalation Exploit This module exploits a vulnerability in snapd which incorrectly validates and parses the remote socket address when performing access controls on its UNIX socket.

A local attacker could use this to access privileged socket APIs and obtain administrator privileges.
February 21, 2019 Linux Exploits / Local
Kibana local file inclusion Exploit Specific versions of Kibana do not validate paths on a specific GET request, this can be exploited in order to execute local javascript files on the target system February 19, 2019 Linux Exploits / Local File Inclusion
Microsoft Windows DCOM-RPC NTLM Reflection Elevation of Privilege Exploit This update adds an exploit which implements the Rotten Potato technique to perform a Local Privilege Escalation.



It leverages on local DCOM DCE/RPC connections that can be reflected back to a listening TCP socket allowing access to an NTLM authentication challenge for LocalSystem user which can be replayed to the local DCOM activation service. An attacker who successfully exploited this vulnerability could bypass security and gain elevated privileges on a targeted system.
February 14, 2019 Windows Exploits / Local