Exploits, Vulnerabilities & PoCs Got information about the above?

InterN0T Affiliates:
EvilZonepy1337

SirCapsAlot.NET

Reply
 
LinkBack Thread Tools Display Modes
  #1  
Old 27th January 2010, 21:23
SiG SiG is offline
 
Join Date: Jan 2010
Location: Europe
Posts: 11
Rep Power: 1
Reputation: 1
SiG is an unknown memory address at this point
0-day exploit for all Windows versions, gain kernel priv
All 32bit x86 versions of Windows NT released since 27-Jul-1993 are believed to
be affected, including but not limited to the following actively supported
versions:

- Windows 2000
- Windows XP
- Windows Server 2003
- Windows Vista
- Windows Server 2008
- Windows 7
- etc.

Source:



Code:
http://www.opensc.ws/trojan-malware-releases/9454-0-day-exploit-all-windows-versions-gain-kernel-priv.html




Code:
http://packetstormsecurity.org/1001-exploits/mswinnt-pwn.txt
Download:



Code:
http://www.speedyshare.com/files/20598414/POC_-_EXPLOIT_KiTrap0D.zip
__________________
Just focus...

Reply With Quote
  #2  
Old 29th January 2010, 11:34
MaXe's Avatar
The BOFH
  
Join Date: Jun 2008
Location: Sweden - Ljusdal
Posts: 2,718
Blog Entries: 31
Rep Power: 10
Reputation: 146
MaXe will become a Token soonMaXe will become a Token soon
Re: 0-day exploit for all Windows versions, gain kernel priv
/Approved.

This exploit is the very debated vulnerability in Windows which has existed for over 10 years.

I believe there is or will be a Metasploit module for this very soon.
__________________
Code:
                                ____/____\_________________
                      \|/      | OMG IT'S TEH LEET STORY!! |
    /*\         /\    -*-      |______  ________/\_________|
   // \\       /  \   /|\        /    \/    \  /  \
  /// \\\     /    \            /            \/    \
   // \\     /      \          /      \o/     \     \
    | |     /        \        /        |       \     \
 ___| |____/          \______/________/ \_______\_____\_________
          /     o      \
               #"=-
               /\
 __________________________________________________________
    On a mission, to find the lost member of Teh Unkwon..
Reply With Quote
  #3  
Old 29th January 2010, 12:00
 
Join Date: Sep 2009
Posts: 78
Rep Power: 2
Reputation: 1
ccoder is an unknown memory address at this point
Re: 0-day exploit for all Windows versions, gain kernel priv
MaXe i think 16 years , from windows 3.1
__________________
I love InterN0T
Reply With Quote
  #4  
Old 2nd February 2010, 17:59
MaXe's Avatar
The BOFH
  
Join Date: Jun 2008
Location: Sweden - Ljusdal
Posts: 2,718
Blog Entries: 31
Rep Power: 10
Reputation: 146
MaXe will become a Token soonMaXe will become a Token soon
Re: 0-day exploit for all Windows versions, gain kernel priv
Quote:
Originally Posted by ccoder
MaXe i think 16 years , from windows 3.1

Quote:
Originally Posted by MaXe View Post
... which has existed for over 10 years.
I said over 10 years Over == Above "where" (16 > 10) == (16 is above 10).
__________________
Code:
                                ____/____\_________________
                      \|/      | OMG IT'S TEH LEET STORY!! |
    /*\         /\    -*-      |______  ________/\_________|
   // \\       /  \   /|\        /    \/    \  /  \
  /// \\\     /    \            /            \/    \
   // \\     /      \          /      \o/     \     \
    | |     /        \        /        |       \     \
 ___| |____/          \______/________/ \_______\_____\_________
          /     o      \
               #"=-
               /\
 __________________________________________________________
    On a mission, to find the lost member of Teh Unkwon..
Reply With Quote
  #5  
Old 2nd February 2010, 20:37
 
Join Date: Sep 2009
Posts: 78
Rep Power: 2
Reputation: 1
ccoder is an unknown memory address at this point
Re: 0-day exploit for all Windows versions, gain kernel priv
anyone testedthis exploit ? i have tested it on winxp sp2 when run the exe file the system crashed and restart :D
__________________
I love InterN0T
Reply With Quote
  #6  
Old 3rd February 2010, 11:49
MaXe's Avatar
The BOFH
  
Join Date: Jun 2008
Location: Sweden - Ljusdal
Posts: 2,718
Blog Entries: 31
Rep Power: 10
Reputation: 146
MaXe will become a Token soonMaXe will become a Token soon
Re: 0-day exploit for all Windows versions, gain kernel priv
Quote:
Originally Posted by ccoder View Post
anyone testedthis exploit ? i have tested it on winxp sp2 when run the exe file the system crashed and restart :D
Did you look for a Metasploit module for this?
__________________
Code:
                                ____/____\_________________
                      \|/      | OMG IT'S TEH LEET STORY!! |
    /*\         /\    -*-      |______  ________/\_________|
   // \\       /  \   /|\        /    \/    \  /  \
  /// \\\     /    \            /            \/    \
   // \\     /      \          /      \o/     \     \
    | |     /        \        /        |       \     \
 ___| |____/          \______/________/ \_______\_____\_________
          /     o      \
               #"=-
               /\
 __________________________________________________________
    On a mission, to find the lost member of Teh Unkwon..
Reply With Quote
  #7  
Old 3rd February 2010, 15:10
 
Join Date: Sep 2009
Posts: 78
Rep Power: 2
Reputation: 1
ccoder is an unknown memory address at this point
Re: 0-day exploit for all Windows versions, gain kernel priv
i have read about it before but why using msf ? i have uploaded this exploit in a server and want to get system privilege.
Code:
http://carnal0wnage.blogspot.com/2010/01/kitrap0d-now-in-metasploit.html
__________________
I love InterN0T
Last edited by ccoder; 3rd February 2010 at 15:20.
Reply With Quote
  #8  
Old 5th February 2010, 11:49
MaXe's Avatar
The BOFH
  
Join Date: Jun 2008
Location: Sweden - Ljusdal
Posts: 2,718
Blog Entries: 31
Rep Power: 10
Reputation: 146
MaXe will become a Token soonMaXe will become a Token soon
Re: 0-day exploit for all Windows versions, gain kernel priv
@ccoder: Because Metasploit is easy to use and some PoC's on the Internet contains bugs (against script kiddies).
__________________
Code:
                                ____/____\_________________
                      \|/      | OMG IT'S TEH LEET STORY!! |
    /*\         /\    -*-      |______  ________/\_________|
   // \\       /  \   /|\        /    \/    \  /  \
  /// \\\     /    \            /            \/    \
   // \\     /      \          /      \o/     \     \
    | |     /        \        /        |       \     \
 ___| |____/          \______/________/ \_______\_____\_________
          /     o      \
               #"=-
               /\
 __________________________________________________________
    On a mission, to find the lost member of Teh Unkwon..
Reply With Quote
Reply

Bookmarks

« Simple Machines Forum '[url]' Tag HTML Injection Vulnerability | 0-day in Microsoft DirectShow »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
best exploit compiler for windows h4ckerz C // C++ 11 Yesterday 10:00
Windows 7 & 2008 R2 - Remote Kernel Crash (DoS) MaXe Exploits, Vulnerabilities & PoCs 2 19th November 2009 00:50
Gain better Signal ccoder General Hacking Discussions 6 18th October 2009 01:05
Linux Kernel 2.6 local root hestas Exploits, Vulnerabilities & PoCs 0 7th November 2008 10:03
Linux Kernel 2.4/2.6 x86-64 System Call Emulation Exploit hestas Exploits, Vulnerabilities & PoCs 1 5th July 2008 22:39


All times are GMT +2. The time now is 05:42.
Copyright ©2007 - Forever, InterN0T & Teh Unkwon

Hosted by 1and1


Contact Us - InterN0T - Archive - Top
Powered by vBulletin® Version 1.3.37
Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.