Jump to content

sliverlight exploit


Recommended Posts

Does anyone know of a video showing the exploitation of a box using the sliverlight exploit CVE-2013-0074 and CVE-2013-3896?

I am concerned that we have a bunch of machines with silverlight versions that fit the profile but without being able to show the danger, it will be hard to convince the department to force upgrade the boxes.

Link to comment
Share on other sites

Yeah I set that up and loaded Silverlight 5.0.61118 on a windows 7 x86 box, then set the Metasploit option to 0 (attack the x86 box) and executed "exploit".
I then went to the link Metasploit said it was listening on, but I only got an error on the Metasploit server about the client method every time I tried it. So I thought I was doing something wrong. I was curious if anyone had posted a video or had successfully exploited a box with the .rb file loaded into Metasploit.

Thank for the reply


Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...