Internet Explorer iepeers.dll use-after-free - Demo

[Originally posted on blog.c22.cc]
This video is a simple demonstration of the Metasploit ie_iepeers_pointer exploit on a fully patched Windows XP (sp3) system running IE 7.

Internet Explorer iepeers.dll use-after-free

CVE-2010-0806 / BID 38615 / KB981374

Code for this exploit was provided by Trancer.
More information about the exploit can be found on http://www.rec-sec.com

Rating:
  • Currently 5/5 stars.

Views: 201

Related Videos

Comment

You need to be a member of Dissecting The Hack to add comments!

Join Dissecting The Hack

Comment by Leon van der Eijk on March 14, 2010 at 4:05am
What is cool about this exploit is that it spawns a stable/new calc.exe and automatically migrates to its pid in one run. Add "run kitrap0d" for extra awesomeness and system privs :)

Latest Activity

Anton Vyacheslav is now a member of Dissecting The Hack
Dec 9, 2018
bernardorichard updated their profile
Nov 28, 2018
Sam Mccalla is now a member of Dissecting The Hack
Nov 19, 2018
bernardorichard is now a member of Dissecting The Hack
Oct 24, 2018

Stratagem 13 News Feed

© 2019   Created by Marcus J. Carey.   Powered by

Badges  |  Report an Issue  |  Terms of Service