Jump to content

Recommended Posts

Posted

Does anyone know of a video showing the exploitation of a box using the sliverlight exploit CVE-2013-0074 and CVE-2013-3896?

I am concerned that we have a bunch of machines with silverlight versions that fit the profile but without being able to show the danger, it will be hard to convince the department to force upgrade the boxes.

Posted

Yeah I set that up and loaded Silverlight 5.0.61118 on a windows 7 x86 box, then set the Metasploit option to 0 (attack the x86 box) and executed "exploit".
I then went to the link Metasploit said it was listening on, but I only got an error on the Metasploit server about the client method every time I tried it. So I thought I was doing something wrong. I was curious if anyone had posted a video or had successfully exploited a box with the .rb file loaded into Metasploit.

Thank for the reply

Rogue

Posted

This module has been tested successfully on IE6 - IE10, Windows XP SP3 / Windows 7 SP1 on both x32 and x64 architectures.

Does your architecture fit these requirements?

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...