Core Impact Security and Penetration Testing Updates

Core Impact Threat Intelligence Exploits, Security and Penetration Testing Updates

We provide real-time updates including new penetration testing exploits and tests for additional platforms as they become available. We advise you of any new modules by email, after which you can download them directly from within Core Impact. All product updates are free during the license period. You're always on the cutting edge of vulnerability and threat intelligence because Core Impact keeps you there.

Fill out the form to sign up for email updates

Use the controls below to navigate Core Impact exploits and other modules.

Title Description Vulnerabilty Category Platform
STOPzilla AntiMalware Arbitrary Write szkg64 Local Privilege Escalation Exploit The user can write 0 where he wants. This can be used to write SecurityDescriptor and write system processes. Therefore we can elevate privileges. NOCVE-9999-120035 Exploits/Local Windows
Linux Kernel eBPF Local Privilege Escalation Exploit An arbitrary memory r/w access issue was found in the Linux kernel compiled with the eBPF bpf(2) system call (CONFIG_BPF_SYSCALL) support. The issue could occur due to calculation errors in the eBPF verifier module, triggered by user supplied malicious BPF program. An unprivileged user could use this flaw to escalate their privileges on a system. Setting parameter "kernel.unprivileged_bpf_disabled=1" prevents such privilege escalation by restricting access to bpf(2) call. CVE-2017-16995 Exploits/Local Linux
Microsoft Windows DHCP Server Heap Overflow Vulnerability DoS A Heap Overflow vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP server. An attacker who successfully exploited the vulnerability could run arbitrary code on the DHCP server. CVE-2019-0626 Denial of Service/Remote Windows
Microsoft Windows Administrator UAC Elevation Bypass Update v1 This update improves the module to bypass UAC by adding support for Windows 10. NOCVE-9999-64489 Exploits/Local Windows
Drupal RESTful Web Services Module Remote PHP Command Injection Exploit RESTful Web Services Module does not properly sanitize data from non-form sources. A vulnerability in this approach allows an unauthenticated attacker to send specially crafted requests resulting in arbitrary PHP execution. CVE-2019-6340 Exploits/OS Command Injection/Known Vulnerabilities Linux
Cisco Webex Meetings webexservice Update Service ptUpdate Downgrade Local Privilege Escalation Exploit A vulnerability in the update service of Cisco Webex Meetings Desktop App for Windows could allow an authenticated local attacker, to execute arbitrary commands with SYSTEM user privileges. CVE-2019-1674 Exploits/Local Windows
Dokany Google Drive File Stream Kernel Buffer Overflow Privileged Escalation Exploit Dokan redistributable are vulnerable to a buffer overflow in the dokan1.sys driver. An attacker can create a device handle to the system driver and send arbitrary input that will trigger the vulnerability. CVE-2018-5410 Exploits/Local Windows
Linux snapd dirty_sock Local Privilege Escalation Exploit Update This module exploits a vulnerability in snapd which incorrectly validates and parses the remote socket address when performing access controls on its UNIX socket. A local attacker could use this to access privileged socket APIs and obtain administrator privileges. This update adds support for more platforms. CVE-2019-7304 Exploits/Local Linux
Linux snapd dirty_sock Local Privilege Escalation Exploit This module exploits a vulnerability in snapd which incorrectly validates and parses the remote socket address when performing access controls on its UNIX socket. A local attacker could use this to access privileged socket APIs and obtain administrator privileges. CVE-2019-7304 Exploits/Local Linux
Kibana local file inclusion Exploit Specific versions of Kibana do not validate paths on a specific GET request, this can be exploited in order to execute local javascript files on the target system CVE-2018-17246 Linux
Microsoft Windows DCOM-RPC NTLM Reflection Elevation of Privilege Exploit This update adds an exploit which implements the Rotten Potato technique to perform a Local Privilege Escalation. It leverages on local DCOM DCE/RPC connections that can be reflected back to a listening TCP socket allowing access to an NTLM authentication challenge for LocalSystem user which can be replayed to the local DCOM activation service. An attacker who successfully exploited this vulnerability could bypass security and gain elevated privileges on a targeted system. CVE-2016-3225 Exploits/Local Windows
OracleDB TNS Listener Remote Poisoning Vulnerability Detector Oracle Database Server is prone to a remote vulnerability that allows attackers to poison the data handled by the remote 'TNS Listener' component of the application. This module tries to verify if the vulnerability is present in the 'TNS Listener' component of the database server, without deploying an agent. CVE-2012-1675 Exploits/Remote Windows, Linux
Advantech WebAccess SCADA BwPAlarm Buffer Overflow Exploit Advantech WebAccess SCADA lack of proper validation of user supplied input may allow an attacker to cause the overflow of a buffer overflow and executes remote code. CVE-2018-18999 Exploits/Remote Windows
Horner Automation Cscape CSP File Buffer Overflow Exploit The specific flaw exists within the parsing of CSP files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a buffer. CVE-2018-19005 Exploits/Client Side Windows
TFM MMPlayer Buffer Overflow Exploit A Buffer Overflow exists when parsing .M3U files. The vulnerability is caused due to a boundary error when handling a crafted .M3U files. NOCVE-9999-117773 Exploits/Client Side Windows
Omron CX-One CXP File Buffer Overflow Exploit The specific flaw exists within the parsing of CXP files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a buffer. CVE-2018-18993 Exploits/Client Side Windows
PCManFTPD Server APPE Command Buffer Overflow Exploit2 Server is prone to a stack-based buffer overflow vulnerability when processing long requests. This flaw can be exploited to execute arbitrary code by sending the server a special crafted request. CVE-2018-18861 Exploits/Remote Windows
VUPlayer Stack Buffer Overflow Exploit A Buffer Overflow exists when parsing .PLS files. The vulnerability is caused due to a boundary error when handling a crafted .PLS files. NOCVE-9999-116454 Exploits/Client Side Windows
Cisco Webex Meetings webexservice Update Service SMB Remote Code Execution Exploit A vulnerability in the update service of Cisco Webex Meetings Desktop App for Windows could allow an authenticated remote attacker, to execute arbitrary commands with SYSTEM user privileges. CVE-2018-15442 Exploits/Remote Windows
ASUS Low Level Access Drivers Privilege Escalation Exploit This module exploits a vulnerability in various ASUS and 3rd party branded utilities. The low level access drivers at the core of these utilities expose dangerous functionality to low privilege processes, a local attacker can read/write arbitrary kernel memory, which can be leveraged to elevate privileges. CVE-2018-18537 Exploits/Local Windows
GIGABYTE Low Level Access Drivers Privilege Escalation Exploit This module exploits a vulnerability in various GIGABYTE and AORUS branded utilities. The low level access drivers at the core of these utilities expose dangerous functionality to low privilege processes, a local attacker can read/write arbitrary kernel memory, which can be leveraged to elevate privileges. CVE-2018-19320 Exploits/Local Windows
Microsoft Windows Win32k xxxMNEndMenuState Local Privilege Escalation Exploit An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory. CVE-2017-0263 Exploits/Local Windows
CyberLink LabelPrint File Project Processing Buffer Overflow Exploit Stack-based buffer overflows in CyberLink LabelPrint 2.5 allow remote attackers to execute arbitrary code via the (1) author (inside the INFORMATION tag), (2) name (inside the INFORMATION tag), (3) artist (inside the TRACK tag), or (4) default (inside the TEXT tag) parameter in an lpp project file. CVE-2017-14627 Exploits/Client Side Windows
Advantech WebAccess webvrpcs Remote Command Execution Exploit The specific flaw exists within the implementation of the 0x2711 IOCTL in the webvrpcs process. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. CVE-2018-14806 Exploits/Remote Windows
CMS Made Simple Module Import PHP Remote Command Injection Vulnerability Exploit CMS Made Simple allows remote authenticated administrators to execute arbitrary PHP code via command injection using the module import feature in admin/moduleinterface.php CVE-2018-10517 Exploits/Remote File Inclusion/Known Vulnerabilities Windows, Linux
Free WMA MP3 Converter Local Buffer Overflow Exploit A Local Buffer Overflow exists when parsing .wav files. The vulnerability is caused due to a boundary error when handling a crafted .wav files. NOCVE-9999-115102 Exploits/Client Side Windows
Microsoft Windows SchRpcSetSecurity Local Privilege Escalation Exploit An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC).An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. CVE-2018-8440 Exploits/Local Windows
10-Strike LANState Local Buffer Overflow Exploit A Buffer Overflow exists when parsing .lsm files. The vulnerability is caused due to a boundary error when handling a crafted .lsm files. NOCVE-9999-113689 Exploits/Client Side Windows
Cisco Webex Meetings webexservice Update Service DLL Hijacking Local Privilege Escalation Exploit A vulnerability in the update service of Cisco Webex Meetings Desktop App for Windows could allow an authenticated local attacker, to execute arbitrary commands with SYSTEM user privileges. CVE-2018-15442 Exploits/Local Windows
VirIT eXplorer Anti-Virus Arbitrary Write Local Privilege Escalation Exploit In VirIT eXplorer Anti-Virus, the VIAGLT64.SYS driver file contains an Arbitrary Write vulnerability, and can be exploited to elevate privileges from a local account to SYSTEM. CVE-2017-16237 Exploits/Local Windows