Core Certified Exploits

Library of expert validated exploits for safe and effective pen tests

Exploit development can be an advanced penetration testing skill that takes time to master. Additionally, when on a job, pen testers often don’t have the resources to create a new exploit. Many resort to searching for and using pre-written exploits that have not been tested and must go through the timely effort of quality assurance testing in order to ensure they are secure and effective.

Core Impact users can save time by finding all the up-to-date exploits they need in one place. We provide a robust library of exploits designed to enable pen testers to safely and efficiently conduct successful penetration tests. Whether written by our own internal team or by a third party like ExCraft, you can trust they have been thoroughly tested and validated by our experts.

The universe of vulnerabilities is huge and not all of them represent the same risk for the customers. Vulnerabilities do not all have the same level of criticality. Some may be easily exploitable by a low-level user, while others may not be exploitable at all. To increase the efficiency of the attacks and the quality of the exploits provided, the Core Impact team has developed selection criteria to prioritize its analysis and implementation. We determine which exploits warrant creation based on the following questions:

  • What are the most critical attacks from the attacker’s perspective?
  • What new vulnerabilities are more likely to be exploited in real attacks?
  • What exploits are the most valuable for Core Impact?

Once an exploit is approved, its priority order considers the following variables: 

  • Vulnerability Properties: CVE, disclosure date, access mechanism and privileges needed. 
  • Target Environment Setup: OS, application prevalence, version and special configurations needed. 
  • Value Provided to Core Impact: Customer request, usage in multiple attacks, allows the installation of an agent, etc. 
  • Technical Cost vs. Benefit: An analysis weighing the resources needed to build an exploit with the internal and external knowledge gained in its creation. 

Each one of these variables has a different weight and provides a ranking of the potential exploits to be developed. Following those criteria, the top of the list would contain, for example, a vulnerability on Windows (most popular OS) that can be exploited remotely, without authentication and that provides super user privileges. 

Correspondingly, a vulnerability on an application that is rarely installed, needs special configurations, and requires User Interaction, would be at the bottom.

Stay Informed of New Core Certified Exploits

Subscribe to receive regular email updates on new exploits available for Core Impact

Browse the Core Certified Exploit Library

We provide pen testers with real-time updates for a wide range of exploits for different platforms, operating systems, and applications. 

Search our continuously growing library to discover an exploit that will allow you to gain and retain access on the target host or application.

Title Description Date Added CVE Link Exploit Platform Exploit Type Product Name
MS Word Record Parsing Buffer Overflow Exploit (MS09-027) Update Microsoft Word is prone to a buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. This update adds support for Office 2003 SP0. CVE-2009-0565 Windows Exploits/Client Side Impact
MS SMB 2.0 Negociate Protocol Request Remote Exploit Update 3 This module exploits a vulnerability in srv2.sys via a SMB 2 malformed packet. This Update adds support for attacking over IPv6 and additional support for Windows Server 2008 CVE-2009-3103 Windows Exploits/Remote Impact
MS SMB 2.0 Negociate Protocol Request Remote Exploit Update 2 This update uses two different methods to exploit the targets, and it also improves the exploited target stability when repairing the SMB service. This module exploits a vulnerability on srv2.sys via a SMB 2 malformed packet. CVE-2009-3103 Windows Exploits/Remote Impact
MS SMB 2.0 Negociate Protocol Request Remote BSOD Exploit Update This update improves the exploit reliability. This module exploits a vulnerability on srv2.sys via a SMB 2 malformed packet. This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation. CVE-2009-3103 Windows Exploits/Remote Impact
MPlayer stsc atom exploit Array index error in libmpdemux/demux_mov.c in MPlayer 1.0 rc2 and earlier might allow remote attackers to execute arbitrary code via a QuickTime MOV file with a crafted stsc atom tag. CVE-2008-0485 Windows Exploits/Client Side Impact
MPlayer SAMI Subtitle File Buffer Overflow Exploit This module exploits a vulnerability in MPlayer. A stack-based buffer overflow in the sub_read_line_sami function in MPlayer SVN Versions before 33471 and SMPlayer 0.6.9 and older versions allows remote attackers to execute arbitrary code via a SAMI subtitle file. CVE-2011-3625 Windows Exploits/Client Side Impact
Mozilla WebThings Authorized Remote Code Execution Mozilla WebThings 0.10.0 Remote Code Execution Exploits / Remote Code Execution IOT
Mozilla WebThings Authorized File Delete Mozilla WebThings Authorized File Delete Exploits / Remote IOT
Mozilla Thunderbird dwmapi DLL Hijacking Exploit Mozilla Thunderbird is prone to a vulnerability that may allow execution of dwmapi.dll if this dll is located in the same folder than .EML file. CVE-2010-3131 Windows Exploits/Client Side Impact
Mozilla Thunderbird Content-Type exploit This module exploits a heap overflow vulnerability in Mozilla Thunderbird; the exploit is triggered when the user opens an attachment with a specially crafted Content-Type headers using the Thunderbird email client. CVE-2006-6505 Windows Exploits/Client Side Impact
Mozilla Firefox WOFF Heap Overflow Exploit This module exploits a heap based buffer overflow vulnerability in Mozilla Firefox via a WOFF font file embedded in a HTML. WARNING:This is an early release module. This is not the final version of this module.It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation. CVE-2010-1028 Windows Exploits/Client Side Impact
Mozilla Firefox UTF-8 Buffer Overflow Exploit Update This module exploits a buffer overflow in Mozilla Firefox when parsing a malformed UTF-8 encoded URL. This update appends info to the "Supported systems notes" section. CVE-2008-0016 Windows Exploits/Client Side Impact
Mozilla Firefox UTF-8 Buffer Overflow Exploit This module exploits a buffer overflow in Mozilla Firefox when parsing a malformed UTF-8 encoded URL. CVE-2008-0016 Windows Exploits/Client Side Impact
Mozilla Firefox Use-after-free DOM and Audio Elements Exploit Use-after-free while manipulating DOM events and removing audio elements due to errors in the handling of node adoption. CVE-2016-9899 Windows Exploits / Client Side Impact
Mozilla Firefox plugin objects Privileged Code Execution Exploit This module exploits a remote code injection in Mozilla Firefox by using vulnerabilities CVE-2013-0758 and CVE-2013-0757. CVE-2013-0758 Windows Exploits/Client Side Impact
Mozilla Firefox OnChannelRedirect Method Memory Corruption Exploit This module exploits an use after free in Mozilla Firefox when manipulating an mChannel Element. CVE-2011-0065 Mac OS X Exploits/Client Side Impact
Mozilla Firefox Memory Corruption Exploit Update This module exploits a vulnerability in Mozilla Firefox 3.5 and installs an agent on the target machine. This update adds support to mac os x. CVE-2009-2477 Windows Exploits/Client Side Impact
Mozilla Firefox Memory Corruption Exploit This module exploits a vulnerability in Mozilla Firefox 3.5 and installs an agent on the target machine. WARNING: This is an early release module. This is not the final version of this module. It is a pre-released version in order to deliver a module as quickly as possible to our customers that may be useful in some situations. Since this module is not the final version it may contain bugs or have limited functionality and may not have complete or accurate documentation. Windows Exploits/Remote Impact
Moxa VPort SDK Plus ActiveX Exploit The specific flaw exists within the VPORTSDK.VPortSDKCtrl.1 ActiveX control. By passing an overly long string to the GetClientReg method's Name parameter. CVE-2015-0986 Windows Exploits/Client Side Impact
MOXA VPort SDK ActiveX Exploit This module will listen for HTTP requests from vulnerable clients and queue client side exploits as HTTP responses in an attempt to install an OS agent on the client. Exploits / Client Side SCADA
MOXA SoftCMS AspWebServer Denial Of Service Exploit MOXA SoftCMS AspWebServer Exploit DoS Windows Denial of Service / Remote SCADA
Moxa MXview 2.8 Private Key Disclosure Remote Moxa MXview 2.8 - Private Key Disclosure Windows Exploits / Remote SCADAPRO
Moxa MXview 2.8 Denial of Service Remote attackers can DoS MXView server by sending large string of junk characters for the user ID and password field login credentials. CVE-2017-7456 Windows Denial of Service / Remote SCADAPRO
Moxa MX AOPC UA Server File Corrupt or DoS This module exploits a vulnerability in Moxa MX AOPC UA Server. Windows Exploits / Remote SCADA
MOXA Mass Configurator Tool DoS Remote Denial Of Service in MOXA Mass Configuration Tool 1.0.0.1 Denial of Service / Remote SCADA