Core Impact Security and Penetration Testing Updates

Core Impact Threat Intelligence Exploits, Security and Penetration Testing Updates

We provide real-time updates including new penetration testing exploits and tests for additional platforms as they become available. We advise you of any new modules by email, after which you can download them directly from within Core Impact. All product updates are free during the license period. You're always on the cutting edge of vulnerability and threat intelligence because Core Impact keeps you there.

Fill out the form to sign up for email updates

Use the controls below to navigate Core Impact exploits and other modules.

Title Description Vulnerabilty Categorysort descending Platform
IBM Lotus Domino nLDAP Remote DoS IBM Lotus Domino is prone to a remote buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. CVE-2011-0917 Denial of Service/Remote Windows
Citrix EdgeSight Remote DoS Citrix EdgeSight is prone to a Denial of Service within the LauncherService.exe component which listens by default on TCP port 18747. When handling a request the process trusts a user supplied field in the packet specifying the length of data to follow, the process then copies the user supplied data, without validation, into a fixed-length buffer on the heap. NOCVE-9999-48569 Denial of Service/Remote Windows
Apache mod_isapi Denial of Service Exploit The Apache HTTP Server, commonly referred to as Apache, is a popular open source web server software. mod_isapi is a core module of the Apache package that implements the Internet Server extension API. The extension allows Apache to serve Internet Server extensions (ISAPI .dll modules) for Microsoft Windows based hosts. By sending a specially crafted request followed by a reset packet it is possible to trigger a vulnerability in Apache mod_isapi that will unload the target ISAPI module from memory. However function pointers still remain in memory and are called when published ISAPI functions are referenced. This results in a dangling pointer vulnerability. CVE-2010-0425 Denial of Service/Remote Windows
Apple CUPS IPP_TAG_UNSUPPORTED Handling null pointer DoS This module exploits a vulnerability in Apple CUPS, when handling the IPP_TAG_UNSUPPORTED which could be exploited by attackers to cause a remote pre-authentication denial of service. CVE-2009-0949 Denial of Service/Remote Linux, Mac OS X
Microsoft Windows SMTP Server MX Record Vulnerability DoS (MS10-024) Update This update fixes some mistakes in the module documentation. This module exploits a vulnerability on Microsoft Windows SMTP Server 64 bits sending a malformed DNS response from a spoofed DNS Server. CVE-2010-0024 Denial of Service/Remote Windows
Apache Incomplete Header DoS This module creates a large number of connections to the Apache server that are left opened preventing it from accepting legitimate requests. WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation. NOCVE-9999-38787 Denial of Service/Remote Windows
Microsoft Windows DHCP Server Heap Overflow Vulnerability DoS A Heap Overflow vulnerability exists in the Windows Server DHCP service when an attacker sends specially crafted packets to a DHCP server. An attacker who successfully exploited the vulnerability could run arbitrary code on the DHCP server. CVE-2019-0626 Denial of Service/Remote Windows
OpenSSL DTLS ChangeCipherSpec DoS ssl/s3_pkt.c in OpenSSL before 0.9.8i allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a DTLS ChangeCipherSpec packet that occurs before ClientHello. CVE-2009-1386 Denial of Service/Remote FreeBSD, Linux
Dnsmasq Heap buffer Overflow DoS Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response. CVE-2017-14491 Denial of Service/Remote Linux
Microsoft Windows ICMPv6 Router Advertisement Remote DoS (MS10-009) This module exploits a memory corruption in the Microsoft Windows TCP/IP implementation by sending a sequence of IPv6 packets with a specially crafted Router Advertisement ICMP packet. WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation. CVE-2010-0239 Denial of Service/Remote Windows
MSRPC MSDTC Allocation DoS (MS06-018) This is a denial of service exploit for a vulnerability in the MSDTC component of windows systems (MS06-018). WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation. CVE-2006-1184 Denial of Service/Remote Windows
Apple Mac OS X DirectoryService SwapProxyMessage Unchecked objOffset Remote DoS This module exploits a vulnerability in Mac OS X Directory Service Proxy by sending a crafted packet to port TCP 625, causing a denial of service effect. CVE-2012-0650 Denial of Service/Remote Mac OS X
OpenBSD PF IP ICMPV6 Remote DoS OpenBSD's PF is prone to a remote denial-of-service vulnerability. Exploiting this issue allows remote attackers to cause a kernel panic on affected computers, denying further service to legitimate users. NOCVE-9999-37988 Denial of Service/Remote OpenBSD
Linux IGMPv3 DoS A flaw was found in the Linux kernels IPv4 IGMP query processing. This module exploit this to cause a denial of service. CVE-2012-0207 Denial of Service/Remote Linux
Microsoft Windows SMB Browser Pool Corruption Vulnerability DoS (MS11-019) This module exploits a vulnerability on "mrxsmb.sys"/"bowser.sys" when a "Browser Election Request Packet" is sent to the "Active Directory" service running in the target. CVE-2011-0654 Denial of Service/Remote Windows
Ultr@VNC Server Error Logging DoS The logging function used by the Ultr@VNC server is affected by a limited buffer-overflow caused by two strcat calls which add a Windows error message to the output buffer causing the server to crash and stop responding to further connections. CVE-2006-1652 Denial of Service/Remote Windows
Microsoft Windows NFS NULL Dereference DoS (MS13-014) This modules exploits a Windows kernel vulnerability in "nfssvr.sys" by sending a NFS file renaming crafted request to the target. This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation. CVE-2013-1281 Denial of Service/Remote Windows
Microsoft Windows Telnet Server ProcessDataReceivedOnSocket DoS (MS15-002) A stack-based buffer overflow in the ProcessDataReceivedOnSocket function in the Microsoft Telnet Server Helper (tlntsess.exe) can be used by remote unauthenticated attackers to render the Telnet server unresponsive. WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation. CVE-2015-0014 Denial of Service/Remote Windows
VMware ESX RetrieveProperties Remote DoS Update The VMware vSphere API contains a denial of service vulnerability. This issue allows an unauthenticated user to send a maliciously crafted API request and disable the host daemon. Exploitation of the issue would prevent management activities on the host but any virtual machines running on the host would be unaffected. This update adds the correct CVE number. CVE-2012-5703 Denial of Service/Remote none
Inetserv POP3 Server RETR DoS Inetserv shuts down the POP3 Server because it fails to properly handle user-supplied malformed RETR packets. NOCVE-9999-47321 Denial of Service/Remote Windows
Microsoft Windows Active Directory Remote DoS (MS09-066) This module exploits an error in the Windows Active Directory implementation by sending a specially crafted LDAP request to crash the lsass.exe process, leading to the reboot of the target machine. CVE-2009-1928 Denial of Service/Remote Windows
Microsoft Windows Print Spooler Service Format String Vulnerability DoS (MS12-054) Update V3 This update provides a better documentation for this module. CVE-2012-1851 Denial of Service/Remote Windows
IIS FTP LIST Stack Exhaustion DoS Update This exploit forces the IIS process inetinfo.exe to throw an unhandled exception. IIS' behavior depends on the operating system version, its configuration and the system-wide debugger specified in the registry. This update adds more supported platforms to the exploit. CVE-2009-2521 Denial of Service/Remote Windows
Microsoft Windows DHCP Client Integer Underflow DoS The specific flaw exists within the DHCP Client service. A crafted DHCP packet can trigger an integer underflow before writing to memory. CVE-2019-0726 Denial of Service/Remote Windows
ISC BIND TKEY assert DoS This module exploits a vulnerability while handling TKEY queries in the BIND service to cause a DoS. CVE-2015-5477 Denial of Service/Remote Solaris, Linux
Windows Mailslot (MS06-035) DoS This module exploits a remote vulnerability that could allow an attacker to send a specially crafted SMB message to an affected system causing a denial of service (MS06-035). WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation. CVE-2006-3942 Denial of Service/Remote Windows
Microsoft Windows Telnet Server ProcessDataReceivedOnSocket DoS (MS15-002) Update A stack-based buffer overflow in the ProcessDataReceivedOnSocket function in the Microsoft Telnet Server Helper (tlntsess.exe) can be used by remote unauthenticated attackers to render the Telnet server unresponsive. This update improves the way in which this module detects if the attack was successful. CVE-2015-0014 Denial of Service/Remote Windows
PHP Hash Table Collisions DoS Update This module sends HTTP requests with specially crafted data making the PHP interpreter to consume lot of resources. This attack prevents the victim server from processing requests from legitimate clients and probably will make the server non-operational. This is update fixes an issue when launching the module from an agent running in a linux system. CVE-2011-4885 Denial of Service/Remote Solaris, AIX, Windows, Linux, OpenBSD, FreeBSD
MSRPC MSDTC Allocation MS06-018 DoS Update This is a denial of service exploit for a vulnerability in the MSDTC component of windows systems (MS06-018). This update fixes the correct CVE number (CVE-2006-1184) CVE-2006-1184 Denial of Service/Remote Windows
Microsoft Host Integration Server Remote DoS (MS11-082) Microsoft Host Integration Server is prone to a remote denial of service due to improper memory handling by the process SnaBase.exe when parsing UDP packets arriving on port 1478. CVE-2011-2008 Denial of Service/Remote Windows